Skip to main content
IEEE International Conference on Consumer Electronics - Berlin, ICCE-BerlinVolume 2019-September, September 2019, Article number 8966174, Pages 16-199th IEEE International Conference on Consumer Electronics, ICCE-Berlin 2019; Berlin; Germany; 8 September 2019 through 11 September 2019; Category numberCFP19BIC-ART; Code 157121

Secure firmware update in embedded systems(Conference Paper)

  • Keleman, L.,
  • Matic, D.,
  • Popovic, M.,
  • Kastelan, I.
  Save all to author list
  • aRTRK Institute for Computer Based Systems, Novi Sad, Serbia
  • bUniversity of Novi Sad, Faculty of Technical Sciences, Novi Sad, Serbia

Abstract

Great numbers of embedded devices are performing safety critical operations, which means it is very important to keep them operating without interference. Update is the weak point that could be exploited by potential attackers to gain access to the system, sabotage it or to simply steal someone else's intellectual property. This paper presents an implementation of secure update process for embedded systems which prevents man-in-the-middle attacks. By using a combination of hash functions, symmetric and asymmetric encryption algorithms it demonstrates how to achieve integrity, authenticity and confidentiality of the update package that is sent to the target hardware. It covers implementation starting from key exchange, next explaining update package encryption process and then decryption on the target hardware. It does not go into a detail about specific encryption algorithms that could be used. It presents a generalized model for secure update that could be adjusted to specific needs. © 2019 IEEE.

Author keywords

Asymmetric encryptionCryptographyEmbedded systemMan-in-the-middleSecuritySymmetric encryptionUpdate

Indexed keywords

Engineering controlled terms:CryptographyFirmwareHardware securityHash functionsNetwork securitySafety engineering
Engineering uncontrolled termsAsymmetric encryptionMan in the middleSecuritySymmetric encryptionUpdate
Engineering main heading:Embedded systems

Funding details

Funding sponsor Funding number Acronym
Ministarstvo Prosvete, Nauke i Tehnološkog RazvojaIII44009-2MPNTR

  • 1

    This work was partially supported by the Ministry of Education, Science and Technological Development of the Republic of Serbia, under grant number: III44009-2

  • ISSN: 21666814
  • ISBN: 978-172812745-3
  • Source Type: Conference Proceeding
  • Original language: English
  • DOI: 10.1109/ICCE-Berlin47944.2019.8966174
  • Document Type: Conference Paper
  • Volume Editors: Velikic G.,Gross C.
  • Publisher: IEEE Computer Society


© Copyright 2020 Elsevier B.V., All rights reserved.

Cited by 6 documents

Podder, R. , Rios, T. , Ray, I.
S-RFUP: Secure Remote Firmware Update Protocol
(2025) Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Malik, N. , Sinha, H. , Dahiya, M.
Security in UAV ecosystem: An implementation perspective
(2024) Sigma Journal of Engineering and Natural Sciences
Yapicioglu, C. , Okay, F.Y. , Demirci, M.
Malicious Firmware Detection on Embedded Systems Using Deep Learning
(2023) 2023 Innovations in Intelligent Systems and Applications Conference, ASYU 2023
View details of all 6 citations
Inform me when this document is cited in Scopus:
Set citation alert Set citation feed
{"topic":{"name":"Address Resolution; Spoofing; Network Security","id":28854,"uri":"Topic/28854","prominencePercentile":77.01534,"prominencePercentileString":"77.015","overallScholarlyOutput":0},"dig":"e8a7559b1053041cf53bb571eb642aad1e222ae3592be3cd8865d11a129cb76c"}

SciVal Topic Prominence

Topic:
Prominence percentile: