Security in Embedded Systems: Design Challenges

ACM Transactions on Embedded Computing Systems

Volumn 3, Issue 3, 2004, Pages 461-491

  Ravi, Srivaths ^a   Raghunathan, Anand ^a   Kocher, Paul ^b   Hattangady, Sunil ^c  

^a NEC LABORATORIES AMERICA   (United States)

^b Cryptography Research Inc   (United States)

^c TEXAS INSTRUMENTS   (United States)

Author keywords

architecture; authentication; battery life; cryptographic algorithms; decryption; Design; Embedded systems; encryption; hardware design; processing requirements; Security; security; security attacks; security protocols; tamper resistance

Indexed keywords

EID: 85014332650     PISSN: 15399087     EISSN: 15583465     Source Type: Journal    
DOI: 10.1145/1015047.1015049     Document Type: Article

References (56)

1. Anderson, R., Kuhn, M., 1996. Tamper Resistance-A Cautionary Note.
2. Anderson, R., Kuhn, M., 1997. Low cost attacks on tamper resistant devices. In IWSP: International Workshop on Security Protocols. Lecture Notes on Computer Science. 125-136.
3. Arbaugh, A., Farber, D. J., Smith, J. M., 1997. A secure and reliable bootstrap architecture. In Proceedings of IEEE Symposium on Security and Privacy. 65-71.
4. Best, R. M., 1981. Crypto Microprocessor for Executing Enciphered Programs. U.S. patent 4, 278, 837.
5. Blaze, M., 1993. A cryptographic file system for UNIX. In Proceedings of the ACM Conference on Computer and Communications Security. 9-16.
6. Boneh, D., Demillo, R., Lipton, R., 2001. On the importance of eliminating errors in cryptographic computations. Cryptology 14, 2, 101-119.
7. Burke, J., Mcdonald, J., Austin, T., 2000. Architectural support for fast symmetric-key cryptography. In Proceedings of the International Conference on ASPLOS. 178-189.
8. Chess, B., 2002. Improving computer security using extended static checking. In Proceedings of the IEEE Symposium on Security and Privacy. 148-161.
9. Clarke, E. M., Jha, S., Marrero, W., 1998. Using state space exploration and a natural deduction style message derivation engine to verify security protocols. In Proceedings of the IFIP Working Conference on Programming Concepts and Methods.
10. Computer Security Institute. 2002 Computer Crime and Security Survey.
11. Detlefs, D. L., Leino, K., Nelson, G., Saxe, J., 1998. Extended Static Checking. Tech. rep., Systems Research Center, Compaq Inc.
12. Fips, Pub, 140-2. Security Requirements for Cryptographic Modules.
13. Gentry, C., Szydlo, M., 2002. Cryptanalysis of the revised NTRU signature scheme. In Proceedings of EUROCRYPT. 299-320.
14. Goh, E., Shacham, H., Modadugu, N., Boneh, D., 2003. SiRiUS: Securing remote untrusted storage. In Proceedings of the ISOC Network and Distributed Systems Security (NDSS) Symposium. 131-145.
15. Hess, E., Janssen, N., Meyer, B., Schutze, T., 2000. Information leakage attacks against smart card implementations of cryptographic algorithms and countermeasures. In Proceedings of the EUROSMART Security Conference. 55-64.
16. Hoglund, G., Mcgraw, G., 2004. Exploiting Software: How to Break Code. Pearson Higher Education.
17. Howard, M., Leblanc, D., 2002. Writing Secure Code. Microsoft Press.
18. IEEE STANDARD 802.11. LAN/MAN Standards Committee of the IEEE. Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specification.
19. INFINEON TECHNOLOGIES. SLE 88 FAMILY.
20. INTEL CORP. 2000. Enhancing Security Performance through IA-64 Architecture.
21. Karri, R., Mishra, P., 2002. Minimizing energy consumption of secure wireless session with QoS constraints. In Proceedings of the International Conference on Communications. 2053-2057.
22. Kelsey, J., Schneier, B., Wagner, D., Hall, C., 1998. Side channel cryptanalysis of product ciphers. In Proceedings of the ESORICS'98. 97-110.
23. Kiriansky, V., Bruening, D., Amarasinghe, S., 2002. Secure execution via program sheperding. In Proceedings of the 11th USENIX Security Symposium.
24. Kommerling, O., Kuhn, M. G., 1999. Design principles for tamper-resistant smartcard processors. In Proceedings of the USENIX Workshop on Smartcard Technology (Smartcard'99). 9-20.
25. Kocher, P., Jaffe, J., Jun, B., 1999. Differential power analysis. Advances in Cryptology- CRYPTO'99. Lecture Notes in Computer Science, vol. 1666. Springer-Verlag, Berlin, 388-397.
26. Kocher, P., Lee, R., Mcgraw, G., Raghunathan, A., Ravi, S., 2004. Security as a new dimension in embedded system design. In Proceedings of the Design Automation Conference. 753-760.
27. Kocher, P. C., 1996. Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems. Advances in Cryptology-CRYPTO'96. Lecture Notes in Computer Science, vol. 1109. Springer-Verlag, Berlin, 104-113.
28. Kuhn, M., 1997. The Trust No 1 Cryptoprocessor Concept. CS555 Report, Purdue University.
29. Lahiri, K., Raghunathan, A., Dey, S., 2002. Battery-driven system design: A new frontier in low power design. In Proceedings of the Joint Asia and South Pacific Design Automation Conference/International Conference on VLSI Design. 261-267.
30. Lee, R. B., Shi, Z., Yang, X., 2001. Efficient permutations for fast software cryptography. IEEE Micro 21, 6 (Dec.), 56-69.
31. Lee, R. B., 1996. Subword parallelism with Max-2. IEEE Micro 16, 4 (Aug.), 51-59.
32. Lie, D., Thekkath, C. A., Mitchell, M., Lincoln, P., Boneh, D., Mitchell, J. C., Horowitz, M., 2000. Architectural support for copy and tamper resistant software. IN Proceedings of the ACM Architectural Support for Programming Languages and Operating Systems (ASPLOS). 168-177.
33. Lowe, G., 1998. Towards a completeness result for model checking of security protocols. In Proceedings of the 11th Computer Security Foundations Workshop.
34. Menezes, A. J., 1993. Elliptic Curve Public Key Cryptosystems. Kluwer Academic Publishers, Boston, MA.
35. Messerges, T. S., Dabbish, E. A., Sloan, R. H., 2002. Examining smartcard security under the threat of power analysis attacks. IEEE Trans. Comput. 51, 5 (May), 541-552.
36. Mobile Electronic Transactions Ltd. 2001. MeT PTD Definition (version 1.1).
37. Necula, G. C., Lee, P., 1996. Proof-Carrying Code. Tech. Rep. CMU-CS-96-165, Carnegie Mellon University.
38. Perrig, A., Szewczyk, R., Tygar, J. D., Wen, V, Culler, D. E., 2002. SPINS: Security protocols for sensor networks. Wireless Netw. 8, 5, 521-534.
39. Potlapally, N., Ravi, S., Raghunathan, A., Jha, N. K., 2003. Analyzing the energy consumption of security protocols. In Proceedings of the International Symposium on Low Power Electronics & Design. 30-35.
40. Potlapally, N., Ravi, S., Raghunathan, A., Lakshminarayana, G., 2002a. Optimizing public-key encryption for wireless clients. In Proceedings of the IEEE International Conference on Communications. 1050-1056.
41. Potlapally, N., Ravi, S., Raghunathan, A., Lakshminarayana, G., 2002b. Algorithm exploration for efficient public-key security processing on wireless handsets. In Proceedings of Design, Automation, and Test in Europe (DATE) Designers Forum. 42-46.
42. Point-to-Point Protocol (PPP), RFC 1661. The Internet Engineering Task Force.
43. Point-to-Point Tunneling Protocol (PPTP), RFC 2637. The Internet Engineering Task Force.
44. Quisquater, J. J., Samyde, D., 2002. Side channel cryptanalysis. In Proceedings of the SECI. 179-184.
45. Rankl, W., Effing, W, Smart Card Handbook. John Wiley and Sons, New York.
46. Ravi, S., Raghunathan, A., Chakradhar, S., 2004. Tamper resistance mechanisms for secure embedded systems. In Proceedings of the International Conference on VLSI Design. 605-611.
47. Ravi, S., Raghunathan, A., Potlapally, N., Sankaradass, M., 2002. System design methodologies for a wireless security processing platform. In Proceedings of the ACM/IEEE Design Automation Conference, 777-782.
48. Reid, P., 2003. Biometrics and Network Security. Prentice Hall PTR, Englewood Cliffs, NJ.
49. Rosing, M., 1998. Implementing Elliptic Curve Cryptography. Manning Publications Co.
50. Schneier, B., 1996. Applied Cryptography: Protocols, Algorithms and Source Code in C. John Wiley and Sons, New York.
51. Stallings, W., 1998. Cryptography and Network Security: Principles and Practice. Prentice Hall, Englewood Cliffs, NJ.
52. Suh, G. E., Clarke, D., Gassend, B., Vandijk, M., Devadas, S., 2003. AEGIS: Architecture for tamper-evident and tamper-resistant processing. In Proceedings of the International Conference on Supercomputing (ICS'03). 160-171.
53. Department, U.S., Commerce, OF, 1999. The Emerging Digital Economy II.
54. Forum, WAP, 2002. Wireless Application Protocol 2.0. Technical White Paper.
55. World Wide Web Consortium. 1998. The World Wide Web Security FAQ.
56. York, R., 2003. A New Foundation for CPU Systems Security. ARM Limited.