【摘 要】
:
In the IEEE S&P 2017,Ronen et al.exploited side-channel power analysis (SCPA) and approximately 5000 power traces to recover the global AES-CCM key that Philip
【机 构】
:
School of Cyber Science and Technology,Shandong University,Qingdao 266237,China;Key Laboratory of Cr
论文部分内容阅读
In the IEEE S&P 2017,Ronen et al.exploited side-channel power analysis (SCPA) and approximately 5000 power traces to recover the global AES-CCM key that Philip Hue lamps use to decrypt and authenticate new firmware.Based on the recovered key,the attacker could create a malicious firmware update and load it to Philip Hue lamps to cause Internet of Things (IoT) security issues.Inspired by the work of Ronen et al.,we propose an AES-CCM-based firmware update scheme against SCPA and denial of service (DoS) attacks.The proposed scheme applied in IoT terminal devices includes two aspects of design (i.e.,bootloader and application layer).Firstly,in the bootloader,the number of updates per unit time is limited to prevent the attacker from acquiring a sufficient number of useful traces in a short time,which can effectively counter an SCPA attack.Secondly,in the application layer,using the proposed handshake protocol,the IoT device can access the IoT server to regain update permission,which can defend against DoS attacks.Moreover,on the STM32F405+M25P40 hardware platform,we implement Philips' and the proposed modified schemes.Experimental results show that compared with the firmware update scheme of Philips Hue smart lamps,the proposed scheme additionally requires only 2.35 KB of Flash memory and a maximum of 0.32 s update time to effectively enhance the security of the AES-CCM-based firmware update process.
其他文献
本刊记者:严总,您好.您一路见证了新建设咨询发展的不易和艰辛.请您为我们介绍一下公司的奋斗史.rn严德华:新建设咨询创建以来的25年,是全体员工凝心聚力、奋力拼搏的25年,是
Circular RNAs (circRNAs) are RNAs with a special closed loop structure,which play important roles in tumors and other diseases.Due to the time consumption of bi
Unlike traditional clustering analysis,the biclustering algorithm works simultaneously on two dimensions of samples (row) and variables (column).In recent years
The identification of blood-secretory proteins and the detection of protein biomarkers in the blood have an important clinical application value.Existing method
Identification of abnormal cervical cells is a significant problem in computer-aided diagnosis of cervical cancer.In this study,we develop an artificial intelli
In order to conduct optical neurophysiology experiments on a freely swimming zebrafish,it is essential to quantify the zebrafish head to determine exact lightin
A recommender system is employed to accurately recommend items,which are expected to attract the user's attention.The over-emphasis on the accuracy of the recom
Semantic Web has emerged to make web content machine-readable,and with the rapid increase in the number of web pages,its importance has increased.Resource descr
Identifying the potential drug-target interactions (DTI) is critical in drug discovery.The drug-target interaction prediction methods based on collaborative fil
As an emerging research field of brain science,multimodal data fusion analysis has attracted broader attention in the study of complex brain diseases such as Pa