One mitigation class that feels under-discussed for physical systems is actuator-boundary enforcement: even if upstream software is compromised or misbehaves, the command path can still deterministically clamp out-of-bounds velocity/effort/position. What I’d really like to see here is reproducible evidence standards (conformance tests + wedge counts + latency distributions) so “this mitigation works” is checkable rather than narrative.
One mitigation class that feels under-discussed for physical systems is actuator-boundary enforcement: even if upstream software is compromised or misbehaves, the command path can still deterministically clamp out-of-bounds velocity/effort/position. What I’d really like to see here is reproducible evidence standards (conformance tests + wedge counts + latency distributions) so “this mitigation works” is checkable rather than narrative.