Skip to Main content Skip to Navigation
Conference papers

Secure Resource Sharing for Embedded Protected Module Architectures

Abstract : Low-end embedded devices and the Internet of Things (IoT) are becoming increasingly important for our lives. They are being used in domains such as infrastructure management, and medical and healthcare systems, where business interests and our security and privacy are at stake. Yet, security mechanisms have been appallingly neglected on many IoT platforms. In this paper we present a secure access control mechanism for extremely lightweight embedded microcontrollers. Being based on Sancus, a hardware-only Trusted Computing Base and Protected Module Architecture for the embedded domain, our mechanism allows for multiple software modules on an IoT-node to securely share resources. We implement and evaluate our approach for two application scenarios, a shared memory system and a shared flash drive. Our implementation is based on a Sancus-enabled TI MSP430 microcontroller. We show that our mechanism can give high security guarantees at small runtime overheads and a moderately increased size of the Trusted Computing Base.
Document type :
Conference papers
Complete list of metadata
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Friday, January 20, 2017 - 4:48:05 PM
Last modification on : Thursday, February 21, 2019 - 10:31:47 AM
Long-term archiving on: : Friday, April 21, 2017 - 4:14:54 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Jo Van Bulck, Job Noorman, Jan Tobias Mühlberg, Frank Piessens. Secure Resource Sharing for Embedded Protected Module Architectures. 9th Workshop on Information Security Theory and Practice (WISTP), Aug 2015, Heraklion, Crete, Greece. pp.71-87, ⟨10.1007/978-3-319-24018-3_5⟩. ⟨hal-01442554⟩



Record views


Files downloads