Lecture
3.6 Meeting the cybersecurity needs of embedded systems
- 14.11.2024 at 11:40 - 12:00
- Future Control Stage (C5.259)Software & Linux
- Language: English
- Type: Lecture
Lecture description
This talk addresses the growing complexity of embedded systems and the critical need for secure, reliable software. Traditional cybersecurity testing methods, often conducted late in the development cycle, struggle to keep pace. This talk explores how formal methods, integrated with advanced analysis tools, empower C/C++ developers to:
Proactively address vulnerabilities: Formal methods and abstract interpretation techniques identify potential weaknesses early in the development process, reducing the reliance on penetration and fuzz testing in later stages.
Streamline development: By focusing on bugs that matter, with close to no false positive and catching flaws earlier, the need for rework and retesting is minimized, leading to faster development cycles, improved efficiency and cost savings.
Enhance software dependability: Combining static analysis using abstract interpretation with full context sensitivity, with hardware memory awareness allows for a more comprehensive understanding of potential vulnerabilities, leading to more dependable and secure software.
This approach aligns with industry best practices (e.g. NIST SP 800-53) and empowers C/C++developers to deliver robust, secure embedded systems that meet the demands of today's and tomorrow's applications.
We will illustrate this approach with the TrustInSoft analyzer to show how it accelerates verification for complex cases, reduces user fatigue, improves developer efficiency, cost-effectiveness, and software cybersecurity. In summary, integrating formal methods and sound Analyzer enhances software reliability and cybersecurity, streamlining development in an increasingly complex environment.
Proactively address vulnerabilities: Formal methods and abstract interpretation techniques identify potential weaknesses early in the development process, reducing the reliance on penetration and fuzz testing in later stages.
Streamline development: By focusing on bugs that matter, with close to no false positive and catching flaws earlier, the need for rework and retesting is minimized, leading to faster development cycles, improved efficiency and cost savings.
Enhance software dependability: Combining static analysis using abstract interpretation with full context sensitivity, with hardware memory awareness allows for a more comprehensive understanding of potential vulnerabilities, leading to more dependable and secure software.
This approach aligns with industry best practices (e.g. NIST SP 800-53) and empowers C/C++developers to deliver robust, secure embedded systems that meet the demands of today's and tomorrow's applications.
We will illustrate this approach with the TrustInSoft analyzer to show how it accelerates verification for complex cases, reduces user fatigue, improves developer efficiency, cost-effectiveness, and software cybersecurity. In summary, integrating formal methods and sound Analyzer enhances software reliability and cybersecurity, streamlining development in an increasingly complex environment.
Further lectures
- 10:00 - 10:203.1 Demystifying the Open Source Graphics Stack on Linux: From Kernel to User Space with a Focus on Embedded Systems
- 10:20 - 10:403.2 Building and maintaining embedded Linux distributions with Yocto and Mender
- 10:40 - 11:003.3 Embedded Linux: Armbian or Yocto?
- 11:00 - 11:203.4 Getting Up to Speed with RTOS-based Firmware Development
- 11:20 - 11:403.5 Managing compliance: Open Source license obligations checklists
- 11:40 - 12:003.6 Meeting the cybersecurity needs of embedded systems
- 12:20 - 12:403.8 Mesa3D Unveiled: From glDrawArrays(…) to GPU Magic
- 13:40 - 14:003.9 Enhancing interoperability and performance for low-power Wi-Fi 6/6E IoT devices
- 14:00 - 14:203.10 Embedded-AI in a nutshell - process, use cases and a look in to the future
- 14:20 - 14:403.11 How to use NVIDIA TAO Models that run on Orin to work on Embedded ARM based MCU