• Login
    View Item 
    •   Home
    • Research
    • Articles
    • View Item
    •   Home
    • Research
    • Articles
    • View Item
    JavaScript is disabled for your browser. Some features of this site may not work without it.

    Browse

    All of KAUSTCommunitiesIssue DateSubmit DateThis CollectionIssue DateSubmit Date

    My Account

    Login

    Quick Links

    Open Access PolicyORCID LibguideTheses and Dissertations LibguideSubmit an Item

    Statistics

    Display statistics

    A Modular End-to-End Framework for Secure Firmware Updates on Embedded Systems

    • CSV
    • RefMan
    • EndNote
    • BibTex
    • RefWorks
    Thumbnail
    Name:
    SecureFirmwareUpdatesJournal.pdf
    Size:
    6.196Mb
    Format:
    PDF
    Description:
    Accepted manuscript
    Download
    Type
    Article
    Authors
    Falas, Solon cc
    Konstantinou, Charalambos cc
    Michael, Maria K.
    KAUST Department
    Computer, Electrical and Mathematical Science and Engineering (CEMSE) Division
    Date
    2021-09-29
    Online Publication Date
    2021-09-29
    Print Publication Date
    2022-01-31
    Permanent link to this record
    http://hdl.handle.net/10754/672041
    
    Metadata
    Show full item record
    Abstract
    Firmware refers to device read-only resident code which includes microcode and macro-instruction-level routines. For Internet-of-Things (IoT) devices without an operating system, firmware includes all the necessary instructions on how such embedded systems operate and communicate. Thus, firmware updates are essential parts of device functionality. They provide the ability to patch vulnerabilities, address operational issues, and improve device reliability and performance during the lifetime of the system. This process, however, is often exploited by attackers in order to inject malicious firmware code into the embedded device. In this article, we present a framework for secure firmware updates on embedded systems. This approach is based on hardware primitives and cryptographic modules, and it can be deployed in environments where communication channels might be insecure. The implementation of the framework is flexible, as it can be adapted in regards to the IoT device’s available hardware resources and constraints. Our security analysis shows that our framework is resilient to a variety of attack vectors. The experimental setup demonstrates the feasibility of the approach. By implementing a variety of test cases on FPGA, we demonstrate the adaptability and performance of the framework. Experiments indicate that the update procedure for a 1183-kB firmware image could be achieved, in a secure manner, under 1.73 seconds.
    Citation
    Falas, S., Konstantinou, C., & Michael, M. K. (2022). A Modular End-to-End Framework for Secure Firmware Updates on Embedded Systems. ACM Journal on Emerging Technologies in Computing Systems, 18(1), 1–19. doi:10.1145/3460234
    Sponsors
    EU Horizon 2020 research and innovation programme Government of the Republic of Cyprus through the Directorate General for European Programmes, Coordination and Development
    Publisher
    Association for Computing Machinery (ACM)
    Journal
    ACM Journal on Emerging Technologies in Computing Systems
    DOI
    10.1145/3460234
    arXiv
    2007.09071
    Additional Links
    https://dl.acm.org/doi/10.1145/3460234
    ae974a485f413a2113503eed53cd6c53
    10.1145/3460234
    Scopus Count
    Collections
    Articles; Computer, Electrical and Mathematical Science and Engineering (CEMSE) Division

    entitlement

     
    DSpace software copyright © 2002-2023  DuraSpace
    Quick Guide | Contact Us | KAUST University Library
    Open Repository is a service hosted by 
    Atmire NV
     

    Export search results

    The export option will allow you to export the current search results of the entered query to a file. Different formats are available for download. To export the items, click on the button corresponding with the preferred download format.

    By default, clicking on the export buttons will result in a download of the allowed maximum amount of items. For anonymous users the allowed maximum amount is 50 search results.

    To select a subset of the search results, click "Selective Export" button and make a selection of the items you want to export. The amount of items that can be exported at once is similarly restricted as the full export.

    After making a selection, click one of the export format buttons. The amount of items that will be exported is indicated in the bubble next to export format.