Abstract | ||
---|---|---|
Security by Design becomes a significant aspect for establishing the Internet-of-Things (IoT) paradigm. In this paper, we present an approach to utilize virtual prototypes (VP) at system level to enable security evaluation along the design process. The proposed VP-based penetration testing framework provides an approach for attack surface and attack behavior modeling. By utilizing a modular, reconfigurable system simulation, an attack scenario can be assessed with different system alternatives. As the VP simulates both hardware (HW) and software (SW) of a single IoT-device as well as the interconnections of different devices a comprehensive system analysis can be executed. Our framework is based on a model-driven approach, which underlines the achieved degree of automation and its potential for industrial application. A comprehensive system analysis tool is the enabler to apply penetration testing, for identifying weak points in the system design and implementation, from early stages in the design flow. The overall approach is demonstrated by an automotive use case derived from real-world security flaws. |
Year | DOI | Venue |
---|---|---|
2018 | 10.1109/DSD.2018.00043 | 2018 21st Euromicro Conference on Digital System Design (DSD) |
Keywords | Field | DocType |
Security analysis,Virtual Prototyping,SystemC,Penetration testing | Attack surface,Unified Modeling Language,Computer science,Systems design,Real-time computing,Automation,Design flow,Engineering design process,Modular design,Embedded system,Secure by design | Conference |
ISBN | Citations | PageRank |
978-1-5386-7378-2 | 0 | 0.34 |
References | Authors | |
0 | 5 |
Name | Order | Citations | PageRank |
---|---|---|---|
Yasamin Mahmoodi | 1 | 0 | 0.34 |
Sebastian Reiter | 2 | 23 | 3.85 |
Alexander Viehl | 3 | 181 | 25.01 |
Oliver Bringmann | 4 | 586 | 71.36 |
Wolfgang Rosenstiel | 5 | 1462 | 212.32 |