Secure Resource Sharing for Embedded Protected Module Architectures - Information Security Theory and Practice
Conference Papers Year : 2015

Secure Resource Sharing for Embedded Protected Module Architectures

Abstract

Low-end embedded devices and the Internet of Things (IoT) are becoming increasingly important for our lives. They are being used in domains such as infrastructure management, and medical and healthcare systems, where business interests and our security and privacy are at stake. Yet, security mechanisms have been appallingly neglected on many IoT platforms. In this paper we present a secure access control mechanism for extremely lightweight embedded microcontrollers. Being based on Sancus, a hardware-only Trusted Computing Base and Protected Module Architecture for the embedded domain, our mechanism allows for multiple software modules on an IoT-node to securely share resources. We implement and evaluate our approach for two application scenarios, a shared memory system and a shared flash drive. Our implementation is based on a Sancus-enabled TI MSP430 microcontroller. We show that our mechanism can give high security guarantees at small runtime overheads and a moderately increased size of the Trusted Computing Base.
Fichier principal
Vignette du fichier
978-3-319-24018-3_5_Chapter.pdf (334.73 Ko) Télécharger le fichier
Origin Files produced by the author(s)

Dates and versions

hal-01442554 , version 1 (20-01-2017)

Licence

Identifiers

Cite

Jo Van Bulck, Job Noorman, Jan Tobias Mühlberg, Frank Piessens. Secure Resource Sharing for Embedded Protected Module Architectures. 9th Workshop on Information Security Theory and Practice (WISTP), Aug 2015, Heraklion, Crete, Greece. pp.71-87, ⟨10.1007/978-3-319-24018-3_5⟩. ⟨hal-01442554⟩
172 View
234 Download

Altmetric

Share

More