Abstract
The sweeping growth of the amount of embedded devices together with their extensive spread pose extensively new design challenges for protection of embedded systems against a wide set of security threats. The embedded device specificity implies combined protection mechanisms require effective resource consumption of their software/hardware modules. At that the design complexity of modern embedded devices, characterized by the proper security level and acceptable resource consumption, is determined by a low structuring and formalization of security knowledge. The paper proposes an approach to elicit security knowledge for subsequent use in automated design and verification tools for secure systems with embedded devices.
Chapter PDF
Similar content being viewed by others
References
Abraham, D.G., Dolan, G.M., Double, G.P., Stevens, J.V.: Transaction security system. IBM Systems Journal 30(2), 206–228 (1991)
Agaskar, A., He, T., Tong, L.: Distributed Detection of Multi-hop Information Flows with Fusion Capacity Constraints. IEEE Transactions on Signal Processing 58(6), 3373–3383 (2010)
Arbaugh, W.A., van Doorn, L.: Embedded security: challenges and concerns. Computer Journal 34(10), 40–41 (2001)
Braghin, C., Sharygina, N., Barone-Adesi, K.: A model checking-based approach for security policy verification of mobile systems. Formal Aspects of Computing Journal, 627–648 (2011)
Burleson, W., Clark, S.S., Ransford, B., Fu, K.: Design challenges for secure implantable medical devices. In: 49th ACM/EDAC/IEEE Design Automation Conference (DAC), pp. 12–17 (2012)
Chechulin, A., Kotenko, I., Desnitsky, V.: An approach for network information flow analysis for systems of embedded components. In: Kotenko, I., Skormin, V. (eds.) MMM-ACNS 2012. LNCS, vol. 7531, pp. 146–155. Springer, Heidelberg (2012)
Cederquist, J.G., Torabi Dashti, M.: An intruder model for verifying liveness in security protocols. In: Proceedings of FMSE 2006, pp. 23–32 (2006)
Desnitsky, V., Kotenko, I., Chechulin, A.: Configuration-based approach to embedded device security. In: Kotenko, I., Skormin, V. (eds.) MMM-ACNS 2012. LNCS, vol. 7531, pp. 270–285. Springer, Heidelberg (2012)
Dick, N., McCallum, N.: High-speed security Embedded security. Communications Engineer Journal 2(2), 37–39 (2004)
Eisenring, M., Thiele, L., Zitzler, E.: Conflicting criteria in embedded system design. IEEE Design & Test of Computers Journal 17(2), 51–59 (2000)
Feigenbaum, J., Freedman, M.J., Tomas, S., Shostack, A.: Privacy Engineering for Digital Rights Management Systems. In: Proceedings of the ACM Workshop on Security and Privacy in Digital Rights Management, pp. 76–105 (2001)
Gogniat, G., Wolf, T., Burleson, W.: Reconfigurable Security Primitive for Embedded Systems. In: Proceedings of International Symposium on In System-on-Chip, pp. 23–28 (2005)
Grand, J.: Practical Secure Hardware Design for Embedded Systems. In: Proceedings of the 2004 Embedded Systems Conference, San Francisco, California, April 1 (2004)
Hedin, D., Sabelfeld, A.: A Perspective on Information-Flow. In: summer school Control Tools for Analysis and Verification of Software Safety and Security, Marktoberdorf, Germany (2011)
Juengst, W.E., Heinrich, M.: Using Resource Balancing to Configure Modular Systems. IEEE Computer Society Intelligent Systems and their Applications 13(4), 50–58 (1998)
Knezevic, M., Rozic, V., Verbauwhede, I.: Design Methods for Embedded Security. Telfor Journal 1(2) (2009)
Kocher, P., Lee, R., Mcgraw, G., Ravi, S.: Security as a new dimension in embedded system design. In: Proceedings of the 41st Design Automation Conference (DAC 2004), pp. 753–760 (2004)
Kommerling, O., Kuhn, M.G.: Design principles for tamper-resistant smartcard processors. In: Proceedings of the USENIX Workshop on Smartcard Technology, pp. 9–20 (1999)
Koopman, P.: Embedded System Security. IEEE Computer (7) (2004)
Kotenko, I., Polubelova, O.: Verification of Security Policy Filtering Rules by Model Checking. In: Proceedings of IEEE Fourth International Workshop on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications(IDAACS 2011), pp. 706–710 (2011)
Object Management Group, The UML Profile for MARTE: Modeling and Analysis of Real-Time and Embedded Systems, Version 1.1 (2011)
Moyers, B.R., Dunning, J.P., Marchany, R.C., Tron, J.G.: Effects of Wi-Fi and Bluetooth Battery Exhaustion Attacks on Mobile Devices. In: Proceedings of the 43rd Hawaii International Conference on System Sciences (HICSS 2010), pp. 1–9. IEEE Computer Society (2010)
Pieters, W., Coles-Kemp, L.: Reducing normative conflicts in information security. In: Proceedings of the 2011 Workshop on New Security Paradigms Workshop, pp. 11–24 (2011)
Pistoia, M., Chandra, S., Fink, S., Yahav, E.: A Survey of Static Analysis Methods for Identifying Security Vulnerabilities In Software Systems. IBM Systems Journal (2007)
Rae, A.J., Wildman, L.P.: A Taxonomy of Attacks on Secure Devices. In: Australian Information Warfare and IT Security, Australia, November 20-21, pp. 251–264 (2003)
Rae, A., Fidge, C.: Identifying Critical Components during Information Security Evaluations. Journal of Research and Practice in Information Technology, 391–402 (2005)
Ravi, S., Raghunathan, A., Kocher, P., Hattangady, S.: Security in Embedded Systems: Design Challenges. ACM Transactions on Embedded Computing Systems 3(3), 461–491 (2004)
Ruiz, J.F., Harjani, R., Maña, A., Desnitsky, V., Kotenko, I., Chechulin, A.: A Methodology for the Analysis and Modeling of Security Threats and Attacks for Systems of Embedded Components. In: Proceedings of the 20th Euromicro International Conference on Parallel, Distributed and Network-Based Computing (PDP 2012), Munich, Germany, February 15-17 (2012)
Ruiz, J.F., Rein, A., Arjona, M., Mana, A., Monsifrot, A., Morvan, M.: Security Engineering and Modelling of Set-Top Boxes. In: 2012 ASE/IEEE International Conference on Proceedings of BioMedical Computing (BioMedCom), pp. 113–122 (2012)
Sabin, D., Weigel, R.: Product configuration frameworks-a survey. Intelligent Systems and their Applications IEEE Computer Society 13(4), 42–49 (1998)
SecFutur. Design of Secure and energy-efficient embedded systems for Future internet applications, FP7 Project Web site, http://www.secfutur.eu
Sprintson, A., El Rouayheb, S., Georghiades, C.: A New Construction Method for Networks from Matroids. In: Proceedings of the 2009 Symposium on Information Theory (ISIT 2009) (2009)
Wang, Z., Johnson, R., Murmuria, R., Stavrou, A.: Exposing Security Risks for Commercial Mobile Devices. In: Kotenko, I., Skormin, V. (eds.) MMM-ACNS 2012. LNCS, vol. 7531, pp. 3–21. Springer, Heidelberg (2012)
Wei, G., Qin, Y.: An Approach of Product Configuration Based on Decision Tree and Minimum Conflicts Repair Algorithm. In: Proceedings of the International Conference on Information Management, Innovation Management and Industrial Engineering (ICII 2009), vol. 1, pp. 126–129 (2009)
Yu, B., Skovgaard, H.J.: A Configuration Tool to Increase Product Competitiveness. IEEE Intelligent Systems 13(4), 34–41 (1998)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 IFIP International Federation for Information Processing
About this paper
Cite this paper
Desnitsky, V., Kotenko, I. (2014). Expert Knowledge Based Design and Verification of Secure Systems with Embedded Devices. In: Teufel, S., Min, T.A., You, I., Weippl, E. (eds) Availability, Reliability, and Security in Information Systems. CD-ARES 2014. Lecture Notes in Computer Science, vol 8708. Springer, Cham. https://doi.org/10.1007/978-3-319-10975-6_15
Download citation
DOI: https://doi.org/10.1007/978-3-319-10975-6_15
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-10974-9
Online ISBN: 978-3-319-10975-6
eBook Packages: Computer ScienceComputer Science (R0)