A Short Review of Security-Aware Techniques in Real-Time Embedded Systems

Chai, Hongxia; Zhang, Gongxuan; Zhou, Junlong; Sun, Jin; Huang, Liusheng

doi:10.1142/s0218126619300022

Cited by 12 publications

(8 citation statements)

References 45 publications

(101 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In other words, if the capabilities of ESs increase in terms of points of connection and input units, then attack surfaces increase, thereby increasing the probability that the system is hacked. [26] ES design principles [20] ESs' security from new dimension [27] Security-aware and real-time ES [28] Hardware enhancement of ES [29] Cybersecurity for cyber-physical system [22] IoT and security measurements [30] Taxonomy of detection approaches [31] Data privacy and policy problems survey [13] Security requirements and challenges in IoT [32] Challenges, threats and solutions of IoT [33] A roadmap for security challenges in the IoT [7] A taxonomy of threats, vulnerabilities and attacks. [34] A survey of cyber-physical systems security [35] Security framework for IoT…”

Section: A Security Problemsmentioning

confidence: 99%

“…It is also worth mentioning the criticality of a real-time embedded system (RTES). Specific security countermeasures for RTES can be implemented in two stages: (i) identify specific attacks that could threaten the systems; and (ii) implement security-guaranteed services, overcoming the challenges of real-time performance and energy consumption [27]. The study in [88] showed how security measures could be circumvented in different platforms.…”

Section: B Security Countermeasures Of Essmentioning

confidence: 99%

“…A cyber-attack could produce severe consequences, e.g., the damage of all systems connected to the targeted system. Hence, it is important to consider the impacts and responses to potential cyber incidents, caused by attacks on these levels [95], [27], [130], [131], [126].…”

Section: ) Impact Of Cyber Attacksmentioning

confidence: 99%

See 2 more Smart Citations

Analytical Review of Cybersecurity for Embedded Systems

Aloseel

Shaw

et al. 2021

IEEE Access

View full text Add to dashboard Cite

To identify the key factors and create the landscape of cybersecurity for embedded systems (CSES), an analytical review of the existing research on CSES has been conducted. The common properties of embedded systems, such as mobility, small size, low cost, independence, and limited power consumption when compared to traditional computer systems, have caused many challenges in CSES. The conflict between cybersecurity requirements and the computing capabilities of embedded systems makes it critical to implement sophisticated security countermeasures against cyber-attacks in an embedded system with limited resources, without draining those resources. In this study, twelve factors influencing CSES have been identified: ( 1) the components; (2) the characteristics; (3) the implementation; (4) the technical domain; (5) the security requirements; (6) the security problems; (7) the connectivity protocols; (8) the attack surfaces; (9) the impact of the cyber-attacks; (10) the security challenges of the ESs; (11) the security solutions; and(12) the players (manufacturers, legislators, operators, and users). A Multiple Layers Feedback Framework of Embedded System Cybersecurity (MuLFESC) with nine layers of protection is proposed, with new metrics of risk assessment. This will enable cybersecurity practitioners to conduct an assessment of their systems with regard to twelve identified cybersecurity aspects. In MuLFESC, the feedback from the systemcomponents layer to the system-operations layer could help implement "Security by Design" in the design stage at the bottom layer. The study provides a clear landscape of CSES and, therefore, could help to find better comprehensive solutions for CSES.INDEX TERMS Characteristics of embedded system, countermeasures, embedded system, cybersecurity of embedded system, MuLFESC, risk assessment.

show abstract

Section: A Security Problemsmentioning

confidence: 99%

Section: B Security Countermeasures Of Essmentioning

confidence: 99%

See 1 more Smart Citation

Analytical Review of Cybersecurity for Embedded Systems

Aloseel

Shaw

et al. 2021

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Constrained resources hinder the implementation of advanced encryption (ciphers and deciphers), intrusion detection systems (IDSs), and other advanced security solutions. Most of the sophisticated security countermeasures require intensive computing and inevitably consume more energy, as these solutions are power-hungry [17]. Also, Riahi Sfar et al addressed the issue of existing cryptographic algorithms, which require more resources in terms of processing power, memory, and energy, which may be unavailable in limited resource SoCs [18] due to the systems' nature.…”

Section: A Embedded Systems and Cybersecurity Challengesmentioning

confidence: 99%

“…Neglecting security countermeasures at the early stages of ES design increases the number of unprotected entry points, which can result in unauthorized access to the system. As many ESs are battery-powered, and as long as the enhancement of security solutions might sacrifice part of the power sources, it is crucial to at minimum reduce the amount of power consumption with lightweight and efficient solutions [17]. Running robust encryption on ESs with their constrained resources is a critical challenge [19], [20].…”

Section: A Embedded Systems and Cybersecurity Challengesmentioning

confidence: 99%

Attack-Detection Architectural Framework Based on Anomalous Patterns of System Performance and Resource Utilization—Part II

et al. 2021

View full text Add to dashboard Cite

This paper presents a unique security approach for detecting cyber-attacks against embedded systems (ESs). The proposed approach has been shaped within an architectural framework called anomalous resource consumption detection (ARCD). The approach's detection mechanism detects cyber-attacks by distinguishing anomalous performance and resource consumption patterns from a pre-determinable reference model. The defense mechanism of this approach acts as an additional layer of protection for ESs. This technique's effectiveness was previously evaluated statistically, and in this paper, we tested this approach's efficiency computationally by using the support-vector machine algorithm. The datasets were generated and collected based on a testbed model, where it was run repeatedly under different operation conditions (normal cases (Rs) versus attacked cases). The executed attack scenarios are (1) denial-of-service (DoS), (2) brute force (BF), (3) remote code execution (RCE), and man-in-the-middle (MITM). A septenary tuple model, which consists of seven determinants that are analyzed based on seven statistical criteria, is the core of the detection mechanism. The prediction accuracy in terms of classifying anomalous patterns compared to normal patterns based on the confusion matrix revealed promising results, proving this approach's effectiveness, where the final results confirmed very high prediction accuracies in terms of distinguishing anomalous patterns from the typical patterns. Therefore, integrating the ARCD concept into the operating system's instructions will help software developers to augment the security countermeasures of the ESs. Adopting the ARCD approach will pave the way for software engineers to build secure operating systems in line with the embedded system's capabilities, without depleting its resources.

show abstract

CToMP: a cycle-task-oriented memory protection scheme for unmanned systems

Ma,

Xi,

et al. 2024

Sci. China Inf. Sci.

View full text Add to dashboard Cite

A Short Review of Security-Aware Techniques in Real-Time Embedded Systems

Cited by 12 publications

References 45 publications

Analytical Review of Cybersecurity for Embedded Systems

Analytical Review of Cybersecurity for Embedded Systems

Attack-Detection Architectural Framework Based on Anomalous Patterns of System Performance and Resource Utilization—Part II

CToMP: a cycle-task-oriented memory protection scheme for unmanned systems

Contact Info

Product

Resources

About