← ClaudeAtlas

robotics-securitylisted

Security hardening and best practices for robotic systems, covering SROS2 DDS security, network segmentation, secrets management, secure boot, and the physical-cyber safety intersection. Use this skill when securing ROS2 communications, configuring DDS encryption and access control, hardening robot onboard computers, managing certificates and credentials, setting up network segmentation for robot fleets, or addressing the unique security challenges where cyber vulnerabilities become physical safety risks. Trigger whenever the user mentions SROS2, DDS security, robot security, robot hardening, ROS2 encryption, ROS2 access control, robot network security, secure robot deployment, robot certificates, keystore generation, robot firewall, e-stop security, safety controller isolation, or IEC 62443 for robotics.
vicky23383/robotics-agent-skills · ★ 5 · AI & Automation · score 77
Install: claude install-skill vicky23383/robotics-agent-skills
# Robotics Security Skill ## When to Use This Skill - Enabling SROS2 encryption and access control on ROS2 topics/services - Generating keystores, certificates, and security policies for DDS - Hardening robot onboard computers (SSH, firewalls, minimal packages) - Setting up network segmentation between robot control/data/management planes - Managing secrets and credentials across a robot fleet - Securing Docker containers running ROS2 nodes - Designing e-stop and safety systems that survive cyber compromise - Auditing a robot system for security vulnerabilities - Implementing secure boot and firmware verification - Addressing IEC 62443 requirements for industrial robot deployments ## The Robot Attack Surface Robots are unique: cyber vulnerabilities become **physical** threats. ``` NETWORK MIDDLEWARE APPLICATION ┌────────────────┐ ┌────────────────┐ ┌────────────────┐ │ Open DDS ports │───────▶│ Unauthenticated│──────────▶│ Hardcoded │ │ (7400-7500) │ │ /cmd_vel pub │ │ credentials │ │ Unsegmented LAN│ │ No msg signing │ │ Unvalidated cmd│ └────────────────┘ └────────────────┘ └────────────────┘ PHYSICAL FIRMWARE SUPPLY CHAIN ┌────────────────┐ ┌────────────────┐ ┌────────────────┐ │ USB/debug ports│───────▶│ Unsigned │──────────▶│ Compromised │ │ Serial consoles│ │ f