Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Introduction
- Distinguishing general security from embedded systems security
Characteristics of Embedded Application Security
- Network transactions in embedded systems
- Automotive security
- Security for Android devices
- Next-generation software-defined radio
Critical Aspects of an Embedded System
- Microkernel versus monolithic architecture
- Independent security levels
- Core security requirements
- Access control mechanisms
- I\/O virtualization
Performing Threat Modeling and Assessment
- Identifying attackers and assets
- Defining the attack surface
- Constructing attack trees
- Establishing a security policy
Developing Secure Embedded Software
- Principles of secure coding
- Secure program design
- Minimal implementation strategies
- Component-based architecture
- Principle of least privilege
- Secure development lifecycle
- Validation by independent experts
- Model-driven design
- Code review and static analysis
- Security testing
- Peer code reviews
Understanding and Implementing Cryptography
- Cryptographic modes of operation
- Cryptographic hash functions
- Cryptographic certifications
- Key management
- Block ciphers
- Message Authentication Codes (MACs)
- Random number generation
Data Protection
- Protocols for data-in-motion
- Securing data in transit
- Protocols for data-at-rest
- Securing data at rest
Mitigating Attacks
- Common software-based attacks
- Preventing side-channel attacks
Retrofitting Security into Existing Projects
- Securing bootloaders and firmware updates
Summary and Next Steps
Requirements
- Experience with embedded systems development.
Target Audience
- Embedded systems professionals
- Security professionals
21 Hours
Testimonials (1)
The oral skills and human side of the trainer (Augustin).
