Certified Secure Updates for IoT Devices

Certified Secure Updates for IoT Devices

연구 분야: Analysis

학회: IFIP International Conference on ICT Systems Security and Privacy Protection

Current firmware update workflows are geared towards ensuring integrity and confidentiality in the face of untrusted servers mediating the communication process. However, they cannot ensure that the update’s content preserves deployment-specific security properties, potentially allowing vulnerabilities or malicious code if third-party components compromise or alter the firmware. There is also no guarantee that the new firmware retains the old one’s security properties, a crucial requirement in safety-critical environments. We propose an enhancement of the SUIT standard which ensures that software updates preserve a formally-specified set of behavioral properties in the affected components. We demonstrate the feasibility of the proposed workflow in some realistic use cases.