Secure and Trusted Application Execution on Embedded Devices

Markantonakis, Konstantinos; Akram, Raja Naeem; Msgna, Mehari

doi:10.1007/978-3-319-27179-8_1

Cited by 5 publications

(6 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The need for privacy imposes cryptography utilization in applications that manage these sensitive data [12]. To this end developers embed cryptographic techniques in their mobile applications; and while cryptography is a long existing field, developers rarely have knowledge of information security.…”

Section: Introductionmentioning

confidence: 99%

Evaluation of Cryptography Usage in Android Applications

Chatzikonstantinou¹,

Ntantogian²,

Καρόπουλος³

et al. 2016

Proceedings of the 9th EAI International Conference on Bio-Inspired Information and Communications Technologies (Formerly BIONE

View full text Add to dashboard Cite

Mobile application developers are using cryptography in their products to protect sensitive data like passwords, short messages, documents etc. In this paper, we study whether cryptography and related techniques are employed in a proper way, in order to protect these private data. To this end, we downloaded 49 Android applications from the Google Play marketplace and performed static and dynamic analysis in an attempt to detect possible cryptographic misuses. The results showed that 87.8% of the applications present some kind of misuse, while for the rest of them no cryptography usage was detected during the analysis. Finally, we suggest countermeasures, mainly intended for developers, to alleviate the issues identified by the analysis.

show abstract

Section: Introductionmentioning

confidence: 99%

Evaluation of Cryptography Usage in Android Applications

Chatzikonstantinou¹,

Ntantogian²,

Καρόπουλος³

et al. 2016

Proceedings of the 9th EAI International Conference on Bio-Inspired Information and Communications Technologies (Formerly BIONE

View full text Add to dashboard Cite

show abstract

“…Secure and Trusted Application Execution on Embedded Devices [33] 2015 Holistic approach to the security and trust of embedded devices A Novel Method of APK-Based Automated Execution and Traversal with a Trusted Execution Environment [34] 2016…”

Section: General Resultsmentioning

confidence: 99%

“…Content may change prior to final publication. Protection for legacy applications [8] Access control between trusted and untrusted worlds [23] Protection for embedded devices [33] Hardware isolation architecture [41] Protection for applications execution [34] General-purpose trusted computing platform [27] Protection for real-time OS [43] Trusted OS [29] Protection against data leakage [70] Memory dump mechanism [30] Protection for memory integrity [45] Cache-assisted secure execution [39] Protection for legacy applications [48] Runtime security architecture [19] Protection for services [72] Kernel protection mechanism [51] Protection for SoC communication bus [66] TCB measurements management [42] Trusted I/O [74] Hypervisor [57] Secure device access method [26] Secure mobile device framework [54] TABLE 10. Application solution proposals…”

Section: Tee Advantages and Disadvantagesmentioning

confidence: 99%

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

et al. 2021

View full text Add to dashboard Cite

Trusted Execution Environments have been applied to improve data security in many distinct application scenarios since they enable data processing in a separate and protected region of memory. To investigate how this technology has been applied to the different IoT scenarios, which commonly deal with specific characteristics such as device resource constraints, we carried out a systematic literature review. For this, we selected and analyzed 58 papers from different conferences and journals, identifying the main IoT solutions and scenarios in which TEE has been employed. We also gathered the mentioned TEE advantages and disadvantages as well as the suggestions for future works. This study gives a general overview of the use of TEEs for cloud/fog-based IoT applications, bringing some challenges and directions.

show abstract

“…With the aid of specific smart devices, smart home applications and services offer living convenience with consideration of the homeowner's living pattern, living style, and various other preferences. In other words, a homeowner can control and monitor areas of their home with the use of a smartphone [9][10][11]. As such, the intelligence and versatility of a smart home service make it possible for users to manage their houses regardless of where they are and what they are doing, through the use of a smartphone.…”

Section: Introductionmentioning

confidence: 99%

“…However, although the system is convenient and efficient, it can be vulnerable and open to security threats. Unlike smartphones, which have a decent level of security technology due to their various uses (such as business communications, family phone calls, text messaging, and internet surfing), smart home appliances have weak security technology so they are exposed to various attacks [11][12][13].…”

Section: Introductionmentioning

confidence: 99%

Designing Efficient Smart Home Management with IoT Smart Lighting: A Case Study

Khoa

Nhu

Son

et al. 2020

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

Smart homes are an element of developing smart cities. In recent years, countries around the world have spared no effort in promoting smart cities. Smart homes are an interesting technological advancement that can make people’s lives much more convenient. The development of smart homes involves multiple technological aspects, which include big data, mobile networks, cloud computing, Internet of Things, and even artificial intelligence. Digital information is the main component of signal control and flow in a smart home, while information security is another important aspect. In the event of equipment failure, the task of safeguarding the system’s information is of the utmost importance. Since smart homes are automatically controlled, the problem of mobile network security must be taken seriously. To address these issues, this paper focuses on information security, big data, mobile networks, cloud computing, and the Internet of Things. Security efficiency can be enhanced by using a Secure Hash Algorithm 256 (SHA-256), which is an authentication mechanism that, with the help of the user, can authenticate each interaction of a given device with a WebServer by using an encrypted username, password, and token. This framework could be used for an automated burglar alarm system, guest attendance monitoring, and light switches, all of which are easily integrated with any smart city base. In this way, IoT solutions can allow real-time monitoring and connection with central systems for automated burglar alarms. The monitoring framework is developed on the strength of the web application to obtain real-time display, storage, and warning functions for local or remote monitoring control. The monitoring system is stable and reliable when applying SHA-256.

show abstract

Secure and Trusted Application Execution on Embedded Devices

Cited by 5 publications

References 23 publications

Evaluation of Cryptography Usage in Android Applications

Evaluation of Cryptography Usage in Android Applications

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

Designing Efficient Smart Home Management with IoT Smart Lighting: A Case Study

Contact Info

Product

Resources

About