Activities per year
Abstract
The Internet of Things (IoT) holds great potential for productivity, quality control, supply chain efficiencies and overall business operations. However, with this broader connectivity, new vulnerabilities and attack vectors are being introduced, increasing opportunities for systems to be compromised by hackers and targeted attacks. These vulnerabilities pose severe threats to a myriad of IoT applications within areas such as manufacturing, healthcare, power and energy grids, transportation and commercial building management. While embedded OEMs offer technologies, such as hardware Trusted Platform Module (TPM), that deploy strong chain-of-trust and authentication mechanisms, still they struggle to protect against vulnerabilities introduced by vendors and end users, as well as additional threats posed by potential technical vulnerabilities and zero-day attacks. This paper proposes a pro-active policy-based approach, enforcing the principle of least privilege, through hardware Security Policy Engine (SPE) that actively monitors communication of applications and system resources on the system communication bus (ARM AMBA-AXI4). Upon detecting a policy violation, for example, a malicious application accessing protected storage, it counteracts with predefined mitigations to limit the attack. The proposed SPE approach widely complements existing embedded hardware and software security technologies, targeting the mitigation of risks imposed by unknown vulnerabilities of embedded applications and protocols.
Original language | English |
---|---|
Title of host publication | Living in the Internet of Things: Cybersecurity of the IoT - 2018: Proceedings |
Publisher | Institution of Engineering and Technology (IET) |
Pages | 10 (10 pp.)-10 (10 pp.) |
Number of pages | 10 |
ISBN (Electronic) | 978-1-78561-843-7 |
ISBN (Print) | 978-1-78561-843-7 |
DOIs | |
Publication status | Published - 14 Mar 2018 |
Event | IET Conference on Living in Internet of Things - Savoy Place, London, United Kingdom Duration: 28 Mar 2018 → 29 Mar 2018 |
Publication series
Name | Living in the Internet of Things: Cybersecurity of the IoT - 2018 |
---|
Conference
Conference | IET Conference on Living in Internet of Things |
---|---|
Country/Territory | United Kingdom |
City | London |
Period | 28/03/2018 → 29/03/2018 |
Keywords
- FPGA
- MPSoC
- ARM TrustZone
- Root-of-trust
- IoT
ASJC Scopus subject areas
- General Computer Science
- General Engineering
- Hardware and Architecture
- Information Systems
- Electrical and Electronic Engineering
- Safety, Risk, Reliability and Quality
Fingerprint
Dive into the research topics of 'Embedded policing and policy enforcement approach for future secure IoT technologies'. Together they form a unique fingerprint.-
A comparative analysis of security patterns for enhanced security in safety-critical systems
Siddiqui, F. (Advisor)
07 Sept 2023Activity: Talk or presentation types › Oral presentation
-
IET PETRAS Conference on Living in Internet of Things (IoT)
Siddiqui, F. M. (Participant)
27 Mar 2018 → 28 Mar 2018Activity: Participating in or organising an event types › Participation in conference
Research output
- 9 Citations
- 7 Conference contribution
-
A comparative analysis of security patterns for enhanced security in safety-critical systems
Yengec-Tasdemir, S. B., Siddiqui, F., Sezer, S., Hui, H., McLaughlin, K. & Sonigara, B., 22 Sept 2023, Proceedings of the IEEE 36th International System-on-Chip Conference, SOCC 2023. Becker, J., Marshall, A., Harbaum, T., Ganguly, A., Siddiqui, F. & McLaughlin, K. (eds.). Institute of Electrical and Electronics Engineers Inc., 6 p. (IEEE International SOC Conference: Proceedings).Research output: Chapter in Book/Report/Conference proceeding › Conference contribution
Open AccessFile1 Citation (Scopus)90 Downloads (Pure) -
Bird’s-eye view on the automotive cybersecurity landscape and challenges in adopting AI/ML
Siddiqui, F., Khan, R. & Sezer, S., 16 Mar 2022, 2021 Sixth International Conference on Fog and Mobile Edge Computing (FMEC 2021). Abdennadher, N., Benkhelifa, E., Lloret, J. M. & Jararweh, Y. (eds.). Institute of Electrical and Electronics Engineers Inc., p. 1-6 6 p. (2021 6th International Conference on Fog and Mobile Edge Computing, FMEC 2021).Research output: Chapter in Book/Report/Conference proceeding › Conference contribution
Open AccessFile8 Citations (Scopus)1046 Downloads (Pure) -
XANDAR: A holistic cybersecurity engineering process for safety-critical and cyber-physical systems
Siddiqui, F., Khan, R., Sezer, S., McLaughlin, K., Masing, L., Dörr, T., Schade, F., Becker, J., Ahlbrecht, A., Zaeske, W., Durak, U., Adler, N., Sailer, A., Weber, R., Wilhelm, T., Nemeth, G., Morales, V., Gomez, P., Keramidas, G. & Antonopoulos, C. P. & 5 others, , 25 Aug 2022, IEEE 95th Vehicular Technology Conference (VTC2022-Spring): Proceedings. Institute of Electrical and Electronics Engineers Inc., 5 p. (Vehicular Technology Conference: Proceedings).Research output: Chapter in Book/Report/Conference proceeding › Conference contribution
Open AccessFile5 Citations (Scopus)170 Downloads (Pure)