Study of secure boot with a FPGA-based IoT device

Sun

International Journal of Distributed Sensor Networks

et al. 2020

The software architecture of Internet of Things defines the component model and interconnection topology of Internet of Things systems. Refactoring is a systematic practice of improving a software structure without altering its external behaviors. When the Internet of Things software is refactored, it is necessary to detect the correctness of Internet of Things software to ensure its security. To this end, this article proposes a novel refactoring correction detection approach to ensure software security. Control flow analysis and data flow analysis are used to detect code changes before and after refactoring, and synchronization dependency analysis is used to detect changes in synchronization dependency. Three detection algorithms are designed to detect refactoring correctness. Four real-world benchmark applications are used to evaluate our approach. The experimental results show that our proposed approach can ensure correctness of Internet of Things software refactoring.

Section: Iot Software-based Methodsmentioning

confidence: 99%

A consistency-guaranteed approach for Internet of Things software refactoring

Sun

International Journal of Distributed Sensor Networks

et al. 2020

“…It starts with a first-stage Boot ROM that is synthesized into gates. A device with secure boot [129,138] enabled will first verify whether the firmware is digitally signed when it starts, and the firmware will check the digital signature of the bootloader to verify that it has not been modified. The bootloader of a trusted boot-enabled device verifies its digital signature before loading the kernel.…”

Section: The Root Of Trust and The Hardware Security Modulementioning

confidence: 99%

A Survey on RISC-V Security: Hardware and Architecture

2021

Preprint

The Internet of Things (IoT) is an ongoing technological revolution. Embedded processors are the processing engines of smart IoT devices. For decades, these processors were mainly based on the Arm instruction set architecture (ISA). In recent years, the free and open RISC-V ISA standard has attracted the attention of industry and academia and is becoming the mainstream. Many companies have already owned or are designing RISC-V processors. Many important operating systems and major tool chains have supported RISC-V. Data security and user privacy protection are common challenges faced by all IoT devices. In order to deal with foreseeable security threats, the RISC-V community is studying security solutions aimed at achieving a root of trust (RoT) and ensuring that sensitive information on RISC-V devices is not tampered with or leaked. Many RISC-V security research projects are underway, but the academic community has not yet conducted a comprehensive survey of RISC-V security solutions. The latest technology and future development direction of RICS-V security research are still unclear. In order to fill this research gap, this paper presents an in-depth survey on RISC-V security technologies. This paper summarizes the representative security mechanisms of RISC-V hardware and architecture. Specifically, we first briefly introduce the background and development status of RISC-V, and compare the RISC-V mechanisms with the most relevant Arm mechanisms, highlighting their similarities and differences. Then, we investigate the security research of RISC-V around the theme of hardware and architecture security. Our survey covers hardware and physical access security, hardware-assisted security units, ISA security extensions, memory protection, cryptographic primitives, and side-channel attack protection. Based on our survey, we predict the future research and development directions of RISC-V security. We hope that our research can inspire RISC-V researchers and developers.CCS Concepts: • Security and privacy → Embedded systems security; Cryptography.

Proceedings of the Workshop on Fog Computing and the IoT

“…Robust security mechanisms such as industry standard encryption techniques need to be considered for authentication and identification of all Fog entities. One solution is secure boot [13] that prevents over-the-air firmware updates from unrecognized sources (e.g., malicious nodes). This helps tackle challenge C5.…”

Section: S6 -Security Mechanismsmentioning

confidence: 99%

Safety of fog-based industrial automation systems

Desai

Punnekkat

2019

The Fog computing paradigm employing multiple technologies is expected to play a key role in a multitude of industrial applications by fulfilling futuristic requirements such as flexible and enhanced computing, storage, and networking capability closer to the field devices. While performance aspects of the Fog paradigm has been the central focus of researchers, safety aspects have not received enough attention so far. In this paper, we identify various safety challenges related to the Fog paradigm and provide specific safety design aspects as a step towards enhancing safety in industrial automation scenarios. We contextualize these ideas by invoking a distributed mobile robots use-case that can benefit from the use of the Fog paradigm. CCS CONCEPTS• Computer systems organization → Embedded and cyberphysical systems; Fault-tolerant network topologies; Robotics; Robotic autonomy.