loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Christophe Ponsard and Denis Darquennes

Affiliation: CETIC Research Centre, Charleroi, Belgium

Keyword(s): Cybersecurity, Formal Modelling, Verification, Update Protocol, Internet of Things.

Abstract: The fast growing number of connected devices through the Internet of Things requires the capability of performing secure and efficient over-the-air updates in order to manage the deployment of innovative features and to correct security issues. Pushing an updated image in a device requires a complex protocol exposed to security threats which could be exploited to block, spy or even take control of the updated device. Hence, such update protocols need to be carefully designed and verified. In the scope of this paper, we review some representative update protocols and related threats based on MQTT, TUF (Uptane) and the blockchain. We then show how the adequate management of those threats can be verified using a formal modelling and verification approach using the Tamarin tooling. Our work is applied to the concrete case of the UpKit protocol which exhibits an interesting design.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 18.218.245.179

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Ponsard, C. and Darquennes, D. (2021). Towards Formal Security Verification of Over-the-Air Update Protocol: Requirements, Survey and UpKit Case Study. In Proceedings of the 7th International Conference on Information Systems Security and Privacy - ForSE; ISBN 978-989-758-491-6; ISSN 2184-4356, SciTePress, pages 800-808. DOI: 10.5220/0010431408000808

@conference{forse21,
author={Christophe Ponsard. and Denis Darquennes.},
title={Towards Formal Security Verification of Over-the-Air Update Protocol: Requirements, Survey and UpKit Case Study},
booktitle={Proceedings of the 7th International Conference on Information Systems Security and Privacy - ForSE},
year={2021},
pages={800-808},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010431408000808},
isbn={978-989-758-491-6},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 7th International Conference on Information Systems Security and Privacy - ForSE
TI - Towards Formal Security Verification of Over-the-Air Update Protocol: Requirements, Survey and UpKit Case Study
SN - 978-989-758-491-6
IS - 2184-4356
AU - Ponsard, C.
AU - Darquennes, D.
PY - 2021
SP - 800
EP - 808
DO - 10.5220/0010431408000808
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic