On Software Protection in Embedded Systems

Abstract

We argue that the conventional privilege separation of a processor has inherent limitations in protecting software with higher security requirements, and hence, a new system of protection should be devised to overcome these limitations. To enable the new protection, an operating system needs to be restructured into two layers: the security kernel which implements the new protection system, and the management kernel which manages resources. The security kernel protects the applications even when the management kernel is compromised. The security kernel should be made very thin and simple, thus making it suitable for small devices like handsets and smart sensors & actuators.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 01, 2007
Accession Number
ADP023717

Entities

People

  • Jisoo Yang
  • Kang G. Shin

Organizations

  • University of Michigan

Tags

Communities of Interest

  • Energy and Power Technologies
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Application Software
  • Computer Network Security
  • Computer Programming
  • Computer Science
  • Computers
  • Electrical Engineering
  • Embedded Systems
  • Engineering
  • North Carolina
  • Operating Systems
  • Resource Management
  • Secure Communications
  • Security
  • Technical Information Centers
  • Verification
  • Virtual Machines
  • Workshops

Fields of Study

  • Computer science

Readers

  • Aviation Safety Risk Assessment.
  • Parallel and Distributed Computing.
  • Strategic Security Studies