ESC SV-441- Designing Secure Embedded Ethernet Products
Products designed with embedded Ethernet can be vulnerable to the same types of security problems as PCs that are connected to the Internet. Denial of service attacks can prevent embedded systems from carrying out their intended function, thereby causing inconvenience, erratic behavior, or much worse. Hackers gaining access to embedded software can alter the desired function and operation of an embedded device. Two recent examples illustrate these problems. A nuclear power generation station had to be shut down in the USA when a denial of service problem occurred preventing the controller from accessing the recirculation pumps. Similarly a hacker was able to access the embedded software in the Apple iPhone and reprogram its operation. This presentation will discuss methods for protecting critical embedded communications functions through robust separation of tasks in both firmware and silicon.