liu.seSearch for publications in DiVA
Change search
ReferencesLink to record
Permanent link

Direct link
Security Enhanced Firmware Update Procedures in Embedded Systems
Linköping University, Department of Computer and Information Science.
2008 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Many embedded systems are complex, and it is often required that the firmware in these systems are updatable by the end-user. For economical and confidentiality reasons, it is important that these systems only accept firmware approved by the firmware producer.

This thesis work focuses on creating a security enhanced firmware update procedure that is suitable for use in embedded systems. The common elements of embedded systems are described and various candidate algorithms are compared as candidates for firmware verification. Patents are used as a base for the proposal of a security enhanced update procedure. We also use attack trees to perform a threat analysis on an update procedure.

The results are a threat analysis of a home office router and the proposal of an update procedure. The update procedure will only accept approved firmware and prevents reversion to old, vulnerable, firmware versions. The firmware verification is performed using the hash function SHA-224 and the digital signature algorithm RSA with a key length of 2048. The selection of algorithms and key lengths mitigates the threat of brute-force and cryptanalysis attacks on the verification algorithms and is believed to be secure through 2030.

Place, publisher, year, edition, pages
2008. , 72 p.
Keyword [en]
Secure firmware update, threat analysis, embedded security, embedded systems
Keyword [sv]
Säker uppdatering, hotanalys, säkerhet, inbyggda system, firmware, mjukvara
National Category
Computer and Information Science
URN: urn:nbn:se:liu:diva-16914ISRN: LIU-IDA/LITH-EX-A--08/022--SEOAI: diva2:174606
2008-05-29, John von Neumann, IDA, Linköpings universitet, Linköping, 10:15 (English)
Available from: 2009-02-24 Created: 2009-02-23 Last updated: 2009-02-24Bibliographically approved

Open Access in DiVA

fulltext(1998 kB)3551 downloads
File information
File name FULLTEXT01.pdfFile size 1998 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Abrahamsson, David
By organisation
Department of Computer and Information Science
Computer and Information Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 3551 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 1743 hits
ReferencesLink to record
Permanent link

Direct link