embedded system security

Embedded system security is a strategic approach to protecting software running on embedded systems from attack. An embedded system is a programmable hardware component with a minimal operating system and software.

Embedded systems are designed to perform a dedicated function or functions. Found in consumer electronics, process control systems, aircraft, in-car systems and many other applications, embedded systems need to be extremely reliable. Because of their small size and limited compute resources, however, they can present security challenges for designers and developers.

Download this free guide

New Trend in IoT: Digital Twin Tech

Digital twin tech, or a virtual representation of a product, is a critical concept in IoT that’s still being sorted out. Explore its benefits to IoT, 7 use cases and why it’s important for manufacturing’s future.

Start Download

• Corporate E-mail Address:

  You forgot to provide an Email Address.

  This email address doesn’t appear to be valid.

  This email address is already registered. Please login.

  You have exceeded the maximum character limit.

  Please provide a Corporate E-mail Address.

• • I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.

  Please check the box if you want to proceed.

• • I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.

  Please check the box if you want to proceed.

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent.

The firmware in embedded systems can be difficult (or impossible) to update, so in the past, such systems were often designed to have a life cycle of 15 years or more. With the growth of the internet of things (IoT), however, the nature of embedded systems is changing and the number of possible attack vectors is growing exponentially. Today, an embedded system in a smart device can be hacked to take control of everything from smart thermostats to industrial control systems.

Like security in most IT fields, embedded system security requires an end-to-end approach that includes addressing security issues during the design phase. Security considerations should include the cost of an attack on an embedded system, the cost of an attack and the number of possible attack vectors.

To prevent attacks on embedded systems, software developers should:

• Expect firmware to be updated regularly.
• Limit access to embedded systems to a need-to-use basis.
• Provide a way for network administrators to monitor connections to and from embedded systems.
• Allow integration with third-party security management systems.