Embedded Systems Design Europe - October 2007 - (Page 16) cover feature • Capable of in-depth analysis and design of sophisticated attacks. • May recruit Class II knowledgeable insiders as part of the attack team. From a software perspective, the certification process will evaluate the application programming interface (API) and run a series of tests to assure that the algorithms function correctly and can successfully trap API errors, buffer overruns, and other common software vulnerabilities. However, for any security solution to be effective, some thought must be placed into the area of physical tamper protection. Even the most sophisticated secure microprocessors, FPGAs, Smart Cards, and other security components, still remain vulnerable to certain attack scenarios. This leads to the requirement of maintaining a suitable portion of active circuitry, which remains alive during system down time to sense a potential attempt to extract or steal sensitive information or IP. To accomplish this, such devices must use extremely low power and housed in a tamper reactive package along with suitable interfaces to various sensors used for creating this security fence around circuitry containing sensitive content. It’s important to realize that the strength of an encryption algorithm is no longer the target of an attack, as it’s Common certifications NIST FIPS 140.2 Levels 1–4 • • • • • CSEG ITSEC E1-E6 Common Criteria EAL-1 - EAL-7 EMV 4.1 Levels 1–2 ( Primarily Used In Banking / POS ) ZKA (primarily used in banking /POS) PCI PED ( Primarily Used In Banking / POS PIN Entry ) easier and more beneficial to simply devise clever ways to steal the keys. Hence an increasing amount of attention is being placed on physical hardware protection requirements. As a minimum, a system designer seeking to achieve certification should be able to describe the threat protection associated with at least a baseline of common attack scenarios. These include physical attacks (package intrusion, cutting, etching, and ion or laser drilling); reverse engineering; and gaining access to memory. Noninvasive attacks include ionizing radiation and thermal/cryogenic; induced voltage fluctuations and clock disturbance; and differential power analysis. See Table 1 for more specific certifications. Let’s now look at some specific standards bodies and their associated security levels. FIPS-140-2 defines four levels of security assurance, from lowest to highest, with each building on the previous one. Level 1 means the product properly implements the NIST standardized cryptographic algorithms, including DES (Data Encryption Standard), 3DES (Triple DES), and AES (Advanced Encryption Standard). Level 2 means the product has tamper-evident coatings to ensure that any corruption of the device would be noticeable. Level 3 is for cryptographic modules that delete stored keys if they Industry moving towards “Common Criteria” unification • • • • • • • • • Various Protection Profiles, Security Targets & Schemes can exist UK EN45011:1998 ISO-15408 Trusted Computer Group is providing additional protection profiles IBM Trusted Mobile Platform Security ECMA 340 NFC IP1 ECMA 340 NFC IP2 ISO IEC 18092 ISO 7816 detect a physical attack on, say, circuit components. At Level 3, the product must require authenticated access. And Level 4 requires that a product provide protection from attacks that attempt to thwart physical access controls, such as super-cooling. Most security products receive FIPS-140-2 Level 2 or Level 3 certification, which is sufficient if augmented by Level 4 physical security if the modules aren’t contained in a controlled environment. Common Criteria (CC) uses a scale called Evaluated Assurance Level (EAL). This is an assessment that says the product meets the functional requirements stated in the Security Target and Protection Profile documents. These documents are prepared by the vendor and evaluated by the CC evaluator. EAL levels range from EAL1 to EAL7. EAL1 means that a product meets basic requirements. And EAL7 means that a product meets requirements for exceptionally secure environments. Most products receive CC certification of EAL4 and below. EAL5, 6, and 7 certifications are extremely stringent. Here, the CC evaluates the development process and theoretical framework and functional tests are performed. It should be noted that a CC EAL rating is meaningless without first evaluating the specific Security Target and Protection Profile documentation under which the equipment was certified. These documents are generated by the manufacturer of the equipment being submitted and should be carefully scrutinized if deviation exists from well-known security targets. Generally, aspects of active physical security, tamper protection, and response mechanisms are weakly defined. Presently FIPS 140.2 Level 3 and 4 Physical Security are more widely recognized as providing a clearer definition of specific requirements regarding the protection of secrets. R.M. Backus (bob.backus@dalsemi. com) is a product definer for Maxim Integrated Products. Table 1 16 OCTOBER 2007 | embedded systems design europe | www.embedded.com/europe 012-013-014-016_ESDE.indd 16 9/10/07 13:03:33 http://www.embedded.com/europe
Table of Contents Feed for the Digital Edition of Embedded Systems Design Europe - October 2007 Embedded Systems Design Europe - October 2007 Contents Linux Set to Dominate Torvalds Updates Linux Kernel ARM Establishes Smart Card Foundry Program Emerson Buys Motorola's Embedded Comms Group LynuxWroks and TTTech to Cooperate on Avionics MontaVista CEO Looks for Acquisitions in Europe Ready: Multiprocessing Technology Provides Opportunity Automotive to Drive MCU Market New Supporters Join COM Express Group Analyst Weighs TI Versus Xilinx Versus PicoChip Cover Feature: Embedded Systems Security Has Moved to the Forefront Trace Exposes the Toughest Real-Time Bugs Employ a Secure Flavor of Linux Use an MCU's Low-Power Modes in Foreground/Background Systems Transporting Video Over Wireless Networks New Products Advertising Contacts Embedded Systems Design Europe - October 2007 Embedded Systems Design Europe - October 2007 - Embedded Systems Design Europe - October 2007 (Page 1) Embedded Systems Design Europe - October 2007 - Embedded Systems Design Europe - October 2007 (Page 2) Embedded Systems Design Europe - October 2007 - Contents (Page 3) Embedded Systems Design Europe - October 2007 - Contents (Page 4) Embedded Systems Design Europe - October 2007 - Contents (Page 5) Embedded Systems Design Europe - October 2007 - ARM Establishes Smart Card Foundry Program (Page 6) Embedded Systems Design Europe - October 2007 - ARM Establishes Smart Card Foundry Program (Page 7) Embedded Systems Design Europe - October 2007 - LynuxWroks and TTTech to Cooperate on Avionics (Page 8) Embedded Systems Design Europe - October 2007 - Ready: Multiprocessing Technology Provides Opportunity (Page 9) Embedded Systems Design Europe - October 2007 - Analyst Weighs TI Versus Xilinx Versus PicoChip (Page 10) Embedded Systems Design Europe - October 2007 - Analyst Weighs TI Versus Xilinx Versus PicoChip (Page 11) Embedded Systems Design Europe - October 2007 - Cover Feature: Embedded Systems Security Has Moved to the Forefront (Page 12) Embedded Systems Design Europe - October 2007 - Cover Feature: Embedded Systems Security Has Moved to the Forefront (Page 13) Embedded Systems Design Europe - October 2007 - Cover Feature: Embedded Systems Security Has Moved to the Forefront (Page 14) Embedded Systems Design Europe - October 2007 - Cover Feature: Embedded Systems Security Has Moved to the Forefront (Page 15) Embedded Systems Design Europe - October 2007 - Cover Feature: Embedded Systems Security Has Moved to the Forefront (Page 16) Embedded Systems Design Europe - October 2007 - Trace Exposes the Toughest Real-Time Bugs (Page 17) Embedded Systems Design Europe - October 2007 - Trace Exposes the Toughest Real-Time Bugs (Page 18) Embedded Systems Design Europe - October 2007 - Trace Exposes the Toughest Real-Time Bugs (Page 19) Embedded Systems Design Europe - October 2007 - Trace Exposes the Toughest Real-Time Bugs (Page 20) Embedded Systems Design Europe - October 2007 - Trace Exposes the Toughest Real-Time Bugs (Page 21) Embedded Systems Design Europe - October 2007 - Employ a Secure Flavor of Linux (Page 22) Embedded Systems Design Europe - October 2007 - Employ a Secure Flavor of Linux (Page 23) Embedded Systems Design Europe - October 2007 - Employ a Secure Flavor of Linux (Page 24) Embedded Systems Design Europe - October 2007 - Employ a Secure Flavor of Linux (Page 25) Embedded Systems Design Europe - October 2007 - Employ a Secure Flavor of Linux (Page 26) Embedded Systems Design Europe - October 2007 - Employ a Secure Flavor of Linux (Page 27) Embedded Systems Design Europe - October 2007 - Use an MCU's Low-Power Modes in Foreground/Background Systems (Page 28) Embedded Systems Design Europe - October 2007 - Use an MCU's Low-Power Modes in Foreground/Background Systems (Page 29) Embedded Systems Design Europe - October 2007 - Use an MCU's Low-Power Modes in Foreground/Background Systems (Page 30) Embedded Systems Design Europe - October 2007 - Use an MCU's Low-Power Modes in Foreground/Background Systems (Page 31) Embedded Systems Design Europe - October 2007 - Use an MCU's Low-Power Modes in Foreground/Background Systems (Page 32) Embedded Systems Design Europe - October 2007 - Use an MCU's Low-Power Modes in Foreground/Background Systems (Page 33) Embedded Systems Design Europe - October 2007 - Use an MCU's Low-Power Modes in Foreground/Background Systems (Page 34) Embedded Systems Design Europe - October 2007 - Transporting Video Over Wireless Networks (Page 35) Embedded Systems Design Europe - October 2007 - Transporting Video Over Wireless Networks (Page 36) Embedded Systems Design Europe - October 2007 - Transporting Video Over Wireless Networks (Page 37) Embedded Systems Design Europe - October 2007 - Transporting Video Over Wireless Networks (Page 38) Embedded Systems Design Europe - October 2007 - New Products (Page 39) Embedded Systems Design Europe - October 2007 - New Products (Page 40) Embedded Systems Design Europe - October 2007 - New Products (Page 41) Embedded Systems Design Europe - October 2007 - New Products (Page 42) Embedded Systems Design Europe - October 2007 - Advertising Contacts (Page 43) Embedded Systems Design Europe - October 2007 - Advertising Contacts (Page 44)
For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.