Embedded Systems Security

Practical Methods for Safe and Secure Software and Systems Development


  • Mike Kleidermacher, Elite Corp, Camden, NJ.


  • David Kleidermacher, CTO, Green Hills Software, Santa Barbara, USA
  • Mike Kleidermacher, Elite Corp, Camden, NJ.

The ultimate resource for making embedded systems reliable, safe, and secure

Embedded Systems Security provides:

  • A broad understanding of security principles, concerns, and technologies
  • Proven techniques for the efficient development of safe and secure embedded software
  • A study of the system architectures, operating systems and hypervisors, networking, storage, and cryptographic issues that must be considered when designing secure embedded systems
  • Nuggets of practical advice and numerous case studies throughout

Written by leading authorities in the field with 65 years of embedded security experience: one of the original developers of the world’s only Common Criteria EAL 6+ security certified software product and a lead designer of NSA certified cryptographic systems.

This book is indispensable for embedded systems and security professionals, new and experienced.

An important contribution to the understanding of the security of embedded systems. The Kleidermachers are experts in their field. As the Internet of things becomes reality, this book helps business and technology management as well as engineers understand the importance of "security from scratch." This book, with its examples and key points, can help bring more secure, robust systems to the market.

  • Dr. Joerg Borchert, Vice President, Chip Card & Security, Infineon Technologies North America Corp.; President and Chairman, Trusted Computing Group

Embedded Systems Security provides real-world examples of risk and exploitation; most importantly the book offers clear insight into methods used to counter vulnerabilities to build true, native security into technology.

  • Adriel Desautels, President and CTO, Netragard, LLC.

Security of embedded systems is more important than ever. The growth in networking is just one reason. However, many embedded systems developers have insufficient knowledge of how to achieve security in their systems. David Kleidermacher, a world-renowned expert in this field, shares in this book his knowledge and long experience with other engineers. A very important book at the right time.

  • Prof. Dr.-Ing. Matthias Sturm, Leipzig University of Applied Sciences; Chairman, Embedded World Conference steering board

View full description


Entry level to senior Software Developers, Systems Engineers, Engineering Architets. Software developers and engineers in any computer software and/or network security field.


Book information

  • Published: March 2012
  • Imprint: NEWNES
  • ISBN: 978-0-12-386886-2


"The illustrations are a very strong part of this book. They are well conceived, always to the point, and in color. One interesting editorial feature is the so-called ‘Key Points,’ boxes that interrupt the text with a framed statement emphasizing a single important aspect. In addition, the book has very good bibliographical notes, which are extremely rare in this type of publication. Each chapter is followed by an extensive list of relevant citations, often with accompanying explanations…Overall, the book is very enlightening and engineers can learn a lot from it."--Computing Reviews.com, December 28, 2012
"Embedded Systems Security provides real-world examples of risk and exploitation; most importantly the book offers clear insight into methods used to counter vulnerabilities to build true, native security into technology."--Adriel Desautels, President and CTO, Netragard, LLC
"Written by leading authorities on security in embedded systems (a lead designer of an NSA certified cryptographic system and a lead developer on the single highest rated software product in the Common Criteria security certification rating system), this book provides an overview of security principles, vulnerability concerns and applicable technologies. Real world examples of system weakness and exploitation illustrate the need for security in development and give practical advice for effective techniques to counteract threats. Areas addressed include data protection protocols, emerging embedded systems, networking, cryptography, system architecture, hypervisors, operating systems and storage."--Reference and Research Book News, August 2012, page 186

Table of Contents

1. Introduction to Embedded Systems Security
1.1 What is Security?
1.2 What is an Embedded System?
1.3 Embedded Security Trends
1.4 Security Policies
1.5 Security Threats
2. Systems Software Considerations
2.1 The Role of the Operating System
2.2 Multiple Independent Levels of Security (MILS)
2.3 Microkernel vs. Monolith
2.4 Core Embedded Operating System Security Requirements
2.5 Access Control and Capabilities
2.6 Hypervisors and System Virtualization
2.7 I/O Virtualization
2.8 Remote Management
2.9 Assuring Integrity of the TCB
3. Secure Embedded Software Development
3.1 Introduction to PHASE - Principles of High Assurance Software Engineering
3.2 Minimal Implementation
3.3 Component Architecture
3.4 Least Privilege
3.5 Secure Development Process
3.6 Independent Expert Validation
3.7 Case Study: HAWS - High Assurance Web Server
3.8 Model-Driven Design (MDD)
4. Embedded Cryptography
4.1 Introduction
4.2 U.S. Government Cryptographic Guidance
4.3 The One-Time Pad (OTP)
4.4 Cryptographic Modes
4.5 Block Ciphers
4.6 Authenticated Encryption
4.7 Public Key Cryptography
4.8 Key Agreement
4.9 Public Key Authentication
4.10 Elliptic Curve Cryptography
4.11 Cryptographic Hashes
4.12 Message Authentication Codes
4.13 Random Number Generation
4.14 Key Management for Embedded Systems
4.15 Cryptographic Certifications
5 Data Protection Protocols
5.1 Introduction
5.2 Data-in-Motion Protocols
5.3 Data-at-Rest Protocols
6 Emerging Applications
6.1 Embedded Network Transactions
6.2 Automotive Security
6.3 Secure Android
6.4 Next-generation Software-Defined Radio