The exponential growth of embedded systems within supply chains has made it necessary to introduce code verification measures. Embedded systems can acquire data that is sent to immutable registers, such as blockchains. This mechanism provides certified data, but it can be subject to tampering to alter the data before it is entered into the blockchain. It is essential to verify the integrity of the source code with which data is sent to data storage and processing systems. If the source code is compromised, the data itself can be altered, triggering a permanently altered supply chain. This paper proposes a panoramic on the challenge of code verification in resource-constrained environments, focusing on techniques for proving that the software running on the device sending data is not compromised. Below, the document is structured with an introduction to the problem, related work, an analysis of possible attacks on embedded systems, and a possible approach. Finally, conclusions and future works.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Code Integrity in Embedded Systems

  • Riccardo Petracci,
  • Rosario Culmone

摘要

The exponential growth of embedded systems within supply chains has made it necessary to introduce code verification measures. Embedded systems can acquire data that is sent to immutable registers, such as blockchains. This mechanism provides certified data, but it can be subject to tampering to alter the data before it is entered into the blockchain. It is essential to verify the integrity of the source code with which data is sent to data storage and processing systems. If the source code is compromised, the data itself can be altered, triggering a permanently altered supply chain. This paper proposes a panoramic on the challenge of code verification in resource-constrained environments, focusing on techniques for proving that the software running on the device sending data is not compromised. Below, the document is structured with an introduction to the problem, related work, an analysis of possible attacks on embedded systems, and a possible approach. Finally, conclusions and future works.