Off-the-shelf embedded devices as platforms for security research
| Autor: | Lucian Cojocar, Herbert Bos, Kaveh Razavi |
|---|---|
| Přispěvatelé: | Computer Systems, Network Institute, Systems and Network Security |
| Jazyk: | angličtina |
| Rok vydání: | 2017 |
| Předmět: |
Reverse engineering
Computer science Firmware business.industry Programmable logic controller 02 engineering and technology Fuzz testing computer.software_genre Computer security 020202 computer hardware & architecture Order (exchange) Embedded system 0202 electrical engineering electronic engineering information engineering Malware 020201 artificial intelligence & image processing Security community business computer Hacker |
| Zdroj: | EuroSec 2017, Proceedings of the 10th European Workshop on Systems Security, co-located with European Conference on Computer Systems, EuroSys 2017, 1-6 STARTPAGE=1;ENDPAGE=6;TITLE=EuroSec 2017, Proceedings of the 10th European Workshop on Systems Security, co-located with European Conference on Computer Systems, EuroSys 2017 Cojocar, L, Razavi, K & Bos, H 2017, Off-the-shelf embedded devices as platforms for security research . in EuroSec 2017, Proceedings of the 10th European Workshop on Systems Security, co-located with European Conference on Computer Systems, EuroSys 2017 ., 1, ACM Press, New York, NY, pp. 1-6, 10th European Workshop on Systems Security, EuroSec 2017, co-located with European Conference on Computer Systems, EuroSys 2017, Belgrade, Serbia, 23/04/17 . https://doi.org/10.1145/3065913.3065919 EUROSEC |
| DOI: | 10.1145/3065913.3065919 |
| Popis: | With increasing concerns about the security and trustwor- thiness of embedded devices, the importance of research on their firmware is growing. Unfortunately, researchers with new ideas for improving the security of these devices (e.g., fuzzing) or studying adversarial scenarios (e.g., malware) face massive hurdles when applying them to actual hard- ware. To conduct realistic experiments, we need real-world hardware that can be easily used for security research. Un- fortunately, such devices are scarce and depend entirely on efforts by the hacker community. In this paper, we describe two new devices that we have opened up, a programmable logic controller (PLC) and a solid sate drive (SSD). These two types of devices have not been previously reverse engi- neered and they are both interesting cases given the recent developments on the security of embedded devices and the rise of Internet of Things. We discuss possible new direc- tions with these two "real-world" research platforms. We further make the results of our efforts available to the secu- rity community in order to make it easier to get started in this research area. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|