The necessity to (re-)configure Internet of Things devices such as smart sensors during their entire lifecycle is becoming more important due to recent attacks targeting these devices. Allowing configuration parameters to be changed in any phase of a smart sensor's lifecycle allows security updates or new key material to be applied. Also, the functionality of a smart sensor can be altered by changing its configuration. The challenges that need to be considered when enabling the configuration of arbitrary parameters are the security and usability of the configuration interface, the secured storage of confidential configuration data, and the attestation of successfully applied configuration updates. Therefore, we present an NFC-based configuration approach that relies on dedicated secured hardware to solve these challenges. In addition to a hardware extension for smart sensors, we also present a secured configuration protocol as well as a two-layer configuration attestation process to verify the correct utilization of all transmitted configuration parameters.
|Titel||Proceedings of the 2017 Euromicro Conference on Digital System Design (DSD)|
|Publikationsstatus||Veröffentlicht - 1 Okt 2017|
|Veranstaltung||Euromicro Digital System Design - TU Vienna, Vienna, Österreich|
Dauer: 30 Aug 2017 → 1 Sep 2017
|Konferenz||Euromicro Digital System Design|
|Zeitraum||30/08/17 → 1/09/17|
Ulz, T., Pieber, T. W., Steger, C., Haas, S., Matischek, R., & Bock, H. (2017). Hardware-Secured Configuration and Two-Layer Attestation Architecture for Smart Sensors. in Proceedings of the 2017 Euromicro Conference on Digital System Design (DSD) (S. 229-236) https://doi.org/10.1109/DSD.2017.24