Environment-Aware Multi-Agent Autonomous Penetration Testing Framework for Robotic Systems

The research team proposes an environment-aware multi-agent architecture for robotic systems, which achieves traceable automated penetration testing by dynamically constructing graph-structured shared memory, with a 100% success rate in ROS/ROS2 CTF scenarios.

Digital infrastructures are becoming increasingly complex and interconnected, making scalable and reliable security assessment methods crucial. As an important category of operational technology, modern robots are highly networked cyber-physical systems widely used in industrial automation, logistics, and autonomous service fields.

The research team proposes an environment-aware multi-agent architecture specifically for robot-based systems:

1. Dynamic Graph-Structured Shared Memory Dynamically constructed during execution to capture:

   • Network topology
   • Communication channels
   • Vulnerability information
   • Tried exploitation methods

2. Structured Automation Achieves automated testing while maintaining traceability

3. Effective Context Management Ensures context consistency during the testing process

Multi-round iterative evaluations were conducted in a dedicated robot CTF scenario (ROS/ROS2):

• Success rate: 100% (5/5 tests)
• Comparison: Significantly outperforms literature benchmarks
• Compliance: Meets the traceability and human oversight requirements of the EU AI Act

This framework provides the following for robotic system security assessment:

• Automated penetration testing capabilities
• Complete test process records
• Regulatory-compliant audit trails

• Paper: http://arxiv.org/abs/2603.24221v1