Information Security of Embedded Systems 28.10.2009: Embedded Systems – Terms and Definitions Prof. Dr. Holger Schlingloff Institut für Informatik und

Information Security of Embedded Systems

28.10.2009: Embedded Systems – Terms and Definitions

Prof. Dr. Holger SchlingloffInstitut für Informatik

undFraunhofer FIRST

28.10.2009Embedded Security © Prof. Dr. H. Schlingloff 2009 2

Structure

1. Introductory example2.Embedded systems

engineering1. definitions and terms2. design principles

3.Foundations of security1. threats, attacks, measures2. construction of safe

systems

4.Design of secure systems1. design challenges2. safety modelling and

assessment3. cryptographic algorithms

5. Communication of embedded systems

1. remote access2. sensor networks

6. Algorithms and measures

1. digital signatures2. key management3. authentification4. authorization

7. Formal methods for security

1. protocol verification2. logics and proof

methods


2. Embedded Systems Engineering

Material World

Ideal World

Things Matter, Energy Information

Represen-tation

Shape Form

Transfor-mation

convert (split & splice, cut &

assemble, mould & cast, …)

process (code & recode,

calculate & compute, …)

Transfer move, transmit communicate


Technical and Computational System

• Matter / energy = undefined basic term• Technical system = machine/mechanism for the

conversion or relocation of matter and/or energy wheel, car, motor, gears, steel mill, power plant, light bulb, …

• Information = undefined basic term• Information processing = transformation or transfer of

information• System = “something composite”, usually: composed

by humans (“artefact”)• Computational system = Information processing system

= artefact for the transformation or transfer of information “computer”, “calculator”, “processor”


Embedded System

• Embedded system = computational system within a technical system (information processing component of technical syst.) designed, built and operated as a fixed component special purpose, in contrast to general-purpose interaction with physical environment via designated interfaces reactivity and real-time behaviour

• Characteristic attributes often for control tasks often mass-produced, consumer goods, cheap commodity mostly hard to maintain or extend sometimes safety-relevant or safety-critical communicating, connected, ubiquitous, pervasive, ambient, …


Examples

• How many embedded systems are in this room?• How many embedded systems did you encounter today?

http://images.google.de/imgres?imgurl=http://www.aegyptologie.uni-goettingen.de/beamer/beamer.jpg&imgrefurl=http://www.aegyptologie.uni-goettingen.de/beamer/&h=200&w=200&sz=6&tbnid=Hc3hajcMt6oJ:&tbnh=99&tbnw=99&hl=de&start=2&prev=/images%3Fq%3DBeamer%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://images180.affili.net/245/209245_1.jpg&imgrefurl=http://www.videoabend.de/fahrrad/tachobeleuchtung-sigma-nightlight.htm&h=142&w=180&sz=5&tbnid=2EczIXU4u0IJ:&tbnh=75&tbnw=96&hl=de&start=10&prev=/images%3Fq%3DFahrrad%2Btacho%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.ifr.ing.tu-bs.de/forschung/figures/energieversorgung/kernkraftwerk.jpg&imgrefurl=http://www.ifr.ing.tu-bs.de/forschung/energieversorgung/globale_versorgung.php&h=312&w=409&sz=69&tbnid=1SGCChV3iQAJ:&tbnh=92&tbnw=121&hl=de&start=2&prev=/images%3Fq%3DKernkraftwerk%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.mltp.de/mltp/AFK_mcd202.jpg&imgrefurl=http://www.yopi.de/Hifi_Anlagen__site_4&h=173&w=290&sz=10&tbnid=8Kr-LSzYpiEJ:&tbnh=65&tbnw=110&hl=de&start=1&prev=/images%3Fq%3DHIFI-Anlage%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://images.digitalkamera.de/News/CasioWQV-1-M.jpg&imgrefurl=http://www.digitalkamera.de/Info/News/02/69-de.htm&h=258&w=233&sz=18&tbnid=eL-dtG44KbEJ:&tbnh=107&tbnw=96&hl=de&start=5&prev=/images%3Fq%3DArmbanduhr%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.medipresse.de/mig/albums/83/Flugzeug.jpg&imgrefurl=http://www.medipresse.de/article.php%3Fsid%3D83&h=1690&w=2540&sz=66&tbnid=hdUBLFZlZscJ:&tbnh=99&tbnw=150&hl=de&start=3&prev=/images%3Fq%3DFlugzeug%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.apolloprojekt.de/bilder/4start.jpg&imgrefurl=http://www.apolloprojekt.de/downloads/bilder.php3&h=448&w=350&sz=25&tbnid=YLTbpvTQB6UJ:&tbnh=124&tbnw=96&hl=de&start=1&prev=/images%3Fq%3DRakete%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://auto.consumerguide.com/cmsimages/MERCEDES-BENZ_AMG_2.JPG&imgrefurl=http://auto.consumerguide.com/Articles/index.cfm/act/featuredarticles/article/FA_CAS_2005.html&h=264&w=400&sz=29&tbnid=14giGQ4E7c8J:&tbnh=79&tbnw=120&hl=de&start=15&prev=/images%3Fq%3DMercedes%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.reisebuero-wehmeyer.de/bilder/bahn-ice.jpg&imgrefurl=http://www.reisebuero-wehmeyer.de/bahn.htm&h=240&w=400&sz=20&tbnid=Mqxi-U7b1zkJ:&tbnh=72&tbnw=120&hl=de&start=2&prev=/images%3Fq%3DICE%2BBahn%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.lutz-electronics.ch/Abbildungen/Produkte/MP3-Player/sansa-e130_thumb.JPG&imgrefurl=http://www.lutz-electronics.ch/&h=206&w=245&sz=15&tbnid=bG9jyZmhPv8J:&tbnh=88&tbnw=105&hl=de&start=15&prev=/images%3Fq%3DUnterhaltungselektronik%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.dmec.ch/images/fernbedienung/fernbedienungen.gif&imgrefurl=http://www.dmec.ch/fernbedienung.htm&h=340&w=300&sz=37&tbnid=Hh-IUY7vPJoJ:&tbnh=115&tbnw=101&hl=de&start=18&prev=/images%3Fq%3DUnterhaltungselektronik%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.valcenterpc.ch/images/grandes/Logitech_presenter.jpg&imgrefurl=http://www.valcenterpc.ch/product_info.php%3Fproducts_id%3D2904&h=300&w=300&sz=71&tbnid=LwQ0ivD22cYJ:&tbnh=111&tbnw=111&hl=de&start=3&prev=/images%3Fq%3DPresenter%2BLogitech%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.akibalive.com/archives/mp3_player.jpg&imgrefurl=http://www.akibalive.com/archives/cat_livetokyo_news.html&h=360&w=331&sz=22&tbnid=UmiBo87O0_IJ:&tbnh=117&tbnw=107&hl=de&start=2&prev=/images%3Fq%3DMP3_Player%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.systemaxdev.com/productmedia/T/T-TOT/225867fc-b4b7-47b9-a82c-e20ddd829583_CTDE_200x200.jpg&imgrefurl=http://www.misco.de/productinformation/~59005~/TomTom%2520Go,%2520All-in-One%2520Navigationssystem.htm&h=200&w=200&sz=8&tbnid=5DV0YVCuElEJ:&tbnh=99&tbnw=99&hl=de&start=7&prev=/images%3Fq%3DNavigationssystem%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.herzchirurgie-klinikum-augsburg.de/Home/Herzschrittmacher-Therapie/pm-aggregat.jpg&imgrefurl=http://www.herzchirurgie-klinikum-augsburg.de/Home/Herzschrittmacher-Therapie/herzschrittmacher-therapie.html&h=155&w=176&sz=19&tbnid=P8cYVsue3QoJ:&tbnh=83&tbnw=95&hl=de&start=16&prev=/images%3Fq%3DHerzschrittmacher%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.main-rheiner.de/bilder/71781192.jpg&imgrefurl=http://www.wiesbadener-kurier.de/wirtschaft/flughafen/objekt.php3%3Fartikel_id%3D1148735&h=212&w=200&sz=9&tbnid=UlRfF_LJRmQJ:&tbnh=101&tbnw=95&hl=de&start=6&prev=/images%3Fq%3DChemiefabrik%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://images-eu.amazon.com/images/P/B0002MOKVQ.03.LZZZZZZZ.jpg&imgrefurl=http://amindjbobo.persianblog.com/&h=500&w=349&sz=31&tbnid=L8o4lZ9tdQ8J:&tbnh=127&tbnw=88&hl=de&start=5&prev=/images%3Fq%3DHandy%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://images.amazon.com/images/P/B0001GJC8Y.03._SCLZZZZZZZ_.jpg&imgrefurl=http://www.spielzeug.shop-ihsl.de/detail/B0001GJC8Y%26myOperation%3DImage&h=377&w=500&sz=38&tbnid=lhObyXktV6oJ:&tbnh=95&tbnw=127&hl=de&start=2&prev=/images%3Fq%3DKamera%2BMegapixel%26svnum%3D10%26hl%3Dde%26lr%3D

http://images.google.de/imgres?imgurl=http://www.roschi.rohde-schwarz.ch/www/ch_files.nsf/img/flextronics.jpg/%24file/flextronics.jpg&imgrefurl=http://www.roschi.rohde-schwarz.ch/ch/projekte.html&h=304&w=450&sz=28&tbnid=1pBqG5yvHScJ:&tbnh=83&tbnw=124&hl=de&start=9&prev=/images%3Fq%3DProduktionsstrasse%26svnum%3D10%26hl%3Dde%26lr%3D


Embedded System or Not?

•Phone

•Watch

•Robot

•Assembly line

•Factory

•SAP-System in factory


Market Areas (cf. [Fränzle])

• Transport technologies motor/gear control, X-by-wire,

position and dynamics stabilisation, ABS, passenger comfort, …

traffic guidance, signal lights, radar localisation, …

• Communication technologies cell phone, dect-phone, DSL-

modem, router, switch, …• Office equipment

fax machine, copier, printer, pointer, …

• Household appliances watch, microwave, toaster, gas

burner, washing machine, audio/video-equipment, remote control unit, gaming, …

• Trade and Services ticket machine, sales

automaton, taxometer, cash machine, …

• Building automation and control heating, lighting, elevators,

locking and sentry services, security functions

• Production- and environmental technology power and production plants,

emission control, robotics• Medical technology

ambient devices, hospital equipment, diagnosis and treatment instruments


Market Relevance

• over 10 billion embedded processor unit shipments in 2008• 99.6 % of all processors are used in embedded systems• 87,6% of all produced microcontrollers are „pre-Win98-CPUs“

(DSPs, FPGAs, and MCUs), of which 57,6% are 8-Bit-processors

W. Schröder-Preikschat, http://www4.informatik.uni-erlangen.de/~wosch/Talks/040108HUB.pdf, zitiertQuelle: D. Tennenhouse. Proactive Computing. Communications of the ACM, 43(5):43–50, May 2000http://www.embeddedstar.com/weblog/2009/02/19/embedded-systems-practice/


Predictable Future

• The trend will continue more new embedded processors than humans per year elektronics as consumable goods (e.g. RFID, post cards)

• Ubiquitous computing, ambient assisted living smart clothing (CeBIT `08) glasses with hearing aids,

augmented reality watch with UMTS talking neckties?

• SoC, „System-on-Chip“• „Smart Dust“, sensor networks• Intelligent agents, autonomous systems• …


Specific Problems of Embedded Systems

• Designed, built and operated as a fixed component of a technical system physical and mechanical constraints, assembly near the

controlled process (e.g. inside jet engine or inside tyre) physical stress

• Special purpose, fixed tasks efficiency, minimal resource consumption predefined interfaces

• Interaction with physical environment sensor and actuator design mechanical impreciseness feedback effects unreliability of sensors and actuators

• Reactivity and real-time behaviour operating systems requirements verification problems


Announcement


Further Design Challenges

• Often for control tasks interaction of civil engineers and software engineers

• Often mass-produced, consumer goods, cheap commodity cost pressure for production (optimisation within cents) resource limitation (e.g. bandwidth, energy)

• Mostly hard to maintain or extend maintainance costs vs. development costs vs. production

costs no „service packs“, everything must be correct at first launch callback or guarantee replacement can be desastrous

• Sometimes safety-relevant or safety-critical reliability, availability, maintainability (RAM) fault tolerance

• Communicating, connected, ubiquitous, ambient, … synchronization, multi-core deployment, feature interaction


Embedded Systems Design

•Waterfall or V-Model small to medium design groups civil engineers, electrical engineers software often not valued

•Model-based design Matlab/Simulink, UML code generation

•Product lines no real system is developed “from scratch” look-and-feel, component reuse

Documents

Information Security of Embedded Systems 28.10.2009: Embedded Systems – Terms and Definitions Prof. Dr. Holger Schlingloff Institut für Informatik und