Title: Sancus: Low-cost trustworthy extensible networked devices with a zero-software trusted computing base
Authors: Noorman, Job ×
Agten, Pieter
Daniels, Wilfried
Strackx, Raoul
Van Herrewege, Anthony
Huygens, Christophe
Preneel, Bart
Verbauwhede, Ingrid
Piessens, Frank #
Issue Date: 14-Aug-2013
Publisher: USENIX Association
Host Document: 22nd USENIX Security symposium pages:479-494
Series Title: SEC'13
Conference: USENIX Security Symposium edition:22 location:Washington D.C. date:14-16 August 2013
Abstract: In this paper we propose Sancus, a security architecture for networked embedded devices. Sancus supports extensibility in the form of remote (even third-party) software installation on devices while maintaining strong security guarantees. More specifically, Sancus can remotely attest to a software provider that a specific software module is running uncompromised, and can authenticate messages from software modules to software providers. Software modules can securely maintain local state, and can securely interact with other software modules that they choose to trust. The most distinguishing feature of Sancus is that it achieves these security guarantees without trusting any infrastructural software on the device. The Trusted Computing Base (TCB) on the device is only the hardware. Moreover, the hardware cost of Sancus is low. We describe the design of Sancus, and develop and evaluate a prototype FPGA implementation of a Sancus-enabled device. The prototype extends an MSP430 processor with hardware support for the memory access control and cryptographic functionality required to run Sancus. We also develop a C compiler that targets our device and that can compile standard C modules to Sancus protected software modules.
Publication status: published
KU Leuven publication type: IC
Appears in Collections:Informatics Section
ESAT - COSIC, Computer Security and Industrial Cryptography (+)
× corresponding author
# (joint) last author

Files in This Item:
File Description Status SizeFormat
paper.pdf Accepted 209KbAdobe PDFView/Open


All items in Lirias are protected by copyright, with all rights reserved.