Performance of Secure Boot in Embedded Systems

Profentzas, Christos; Günes, Mirac; Nikolakopoulos, Yiannis; Almgren, Magnus

doi:10.1109/dcoss.2019.00054

Cited by 19 publications

(6 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Modern chips provide several security features to prevent side‐channel attacks by implementing different cryptographic techniques. Booting attacks : Security procedures are not enabled at the boot stage so IoT edge devices can be vulnerable to several attacks. The attacker can capture the node during the reboot process by taking the advantage of these vulnerabilities 55 . To prevent this attack boot process must be secure in these devices. Sleep deprivation : In such types of attacks, the intruder tries to drain the power sources of edge devices.…”

Section: Security Issues In the Industrial Internet Of Thingsmentioning

confidence: 99%

Blockchain technology for the industrial Internet of Things: A comprehensive survey on security challenges, architectures, applications, and future research directions

Latif

Idrees

Huma³

et al. 2021

Trans Emerging Tel Tech

View full text Add to dashboard Cite

The blockchain has emerged as an innovative and powerful technology that shows the tremendous potential to enhance the smart industrial frameworks by providing encryption, immutable storage, and decentralization. In the past few years, several applications in the industrial Internet of Things (IIoT) have emerged and blockchain technologies gained great attention from academia and industry. To discover the great potential of blockchain technology for the IIoT, we present a comprehensive survey on security issues, blockchain architectures, and applications from the industrial perspective. This article starts with a comparison of exiting state‐of‐the‐art surveys of blockchain technologies for IoT/IIoT applications. A four‐layer reference architecture of IIoT is presented along with the functionalities and security issues of each layer. To address these challenges, we assess the potential of blockchain technology by considering the key characteristics, architectures, consensus algorithms, and implementation platforms. Furthermore, we also discussed some use cases of blockchain for the IIoT frameworks. Finally, this survey is concluded by highlighting some open issues and future research directions.

show abstract

Section: Security Issues In the Industrial Internet Of Thingsmentioning

confidence: 99%

Blockchain technology for the industrial Internet of Things: A comprehensive survey on security challenges, architectures, applications, and future research directions

Latif

Idrees

Huma³

et al. 2021

Trans Emerging Tel Tech

View full text Add to dashboard Cite

show abstract

“…Implementing secure boot, whether in hardware or software, can introduce performance overheads. This translates to increased area requirements in hardware, while in software, it can lead to increased power consumption [32].…”

Section: ) Secure Boot With Recoverymentioning

confidence: 99%

Toward Hardware-Assisted Malware Detection Utilizing Explainable Machine Learning: A Survey

Nasser,

Nassar

2023

IEEE Access

View full text Add to dashboard Cite

Hardware joined the battle against malware by introducing secure boot architectures, malware-aware processors, and trusted platform modules. Hardware performance indicators, power profiles, and side channel information can be leveraged at run-time via machine learning for continuous monitoring and protection. The explainability of these machine learning algorithms may play a crucial role in interpreting their results and avoiding false positives. In this paper, we present an eagle eye on the state of the art of these components: we examine secure architectures and malware-aware processors such as those implemented in the RISC-V Instruction Set Architecture and Reduced Instruction Set Computer (RISC). We categorize hardware-assisted solutions increased by machine learning for classification. We survey recently proposed software-assisted and hardware-assisted explainability algorithms in our context. In the discussion, we suggest that (1) safe architectures that guarantee secure device boot are a must, (2) Sidechannel approaches are challenging to integrate into embedded systems, yet they show promise in terms of efficiency, (3) malware-aware processors provide valuable features for malware detection software, and (4) Without explainability, malware detection software is error-prone and can be easily bypassed.

show abstract

“…For example, Profentzas et. al [9] evaluate the overhead of software-based and hardware-based secure boot on embedded platforms, namely, raspberry pi and beaglebone. Their study shows that the secured system presents an increased boot time ranging from 4% to 36%, depending on the technique and algorithms employed.…”

Section: Related Workmentioning

confidence: 99%

Securing hard drives with the Security Protocol and Data Model (SPDM)

Alves¹,

Albertini²,

Simplício³

2022

2022 IEEE Computer Society Annual Symposium on VLSI (ISVLSI)

View full text Add to dashboard Cite

Efforts to secure computing systems via software traditionally focus on the operating system and application levels. In contrast, the Security Protocol and Data Model (SPDM) tackles firmware level security challenges, which are much harder (if at all possible) to detect with regular protection software. SPDM includes key features like enabling peripheral authentication, authenticated hardware measurements retrieval, and secure session establishment. Since SPDM is a relatively recent proposal, there is a lack of studies evaluating its performance impact on real-world applications. In this article, we address this gap by: (1) implementing the protocol on a simple virtual device, and then investigating the overhead introduced by each SDPM message; and (2) creating an SPDM-capable virtual hard drive based on VirtIO, and comparing the resulting read/write performance with a regular, unsecured implementation. Our results suggest that SPDM bootstrap time takes the order of tens of milliseconds, while the toll of introducing SPDM on hard drive communication highly depends on specific workload patterns. For example, for mixed random read/write operations, the slowdown is negligible in comparison to the baseline unsecured setup. Conversely, for sequential read or write operations, the data encryption process becomes the bottleneck, reducing the performance indicators by several orders of magnitude.

show abstract

Performance of Secure Boot in Embedded Systems

Cited by 19 publications

References 22 publications

Blockchain technology for the industrial Internet of Things: A comprehensive survey on security challenges, architectures, applications, and future research directions

Blockchain technology for the industrial Internet of Things: A comprehensive survey on security challenges, architectures, applications, and future research directions

Toward Hardware-Assisted Malware Detection Utilizing Explainable Machine Learning: A Survey

Securing hard drives with the Security Protocol and Data Model (SPDM)

Contact Info

Product

Resources

About