Embedded Systems Security

Embedded Systems Security

Practical Methods for Safe and Secure Software and Systems Development

1st Edition - March 16, 2012

Write a review

  • Authors: David Kleidermacher, Mike Kleidermacher
  • eBook ISBN: 9780123868879
  • Paperback ISBN: 9780123868862

Purchase options

Purchase options
DRM-free (PDF, EPub, Mobi)
Sales tax will be calculated at check-out

Institutional Subscription

Free Global Shipping
No minimum order


The ultimate resource for making embedded systems reliable, safe, and secure Embedded Systems Security provides: A broad understanding of security principles, concerns, and technologies Proven techniques for the efficient development of safe and secure embedded software A study of the system architectures, operating systems and hypervisors, networking, storage, and cryptographic issues that must be considered when designing secure embedded systems Nuggets of practical advice and numerous case studies throughout Written by leading authorities in the field with 65 years of embedded security experience: one of the original developers of the world’s only Common Criteria EAL 6+ security certified software product and a lead designer of NSA certified cryptographic systems. This book is indispensable for embedded systems and security professionals, new and experienced. An important contribution to the understanding of the security of embedded systems. The Kleidermachers are experts in their field. As the Internet of things becomes reality, this book helps business and technology management as well as engineers understand the importance of "security from scratch." This book, with its examples and key points, can help bring more secure, robust systems to the market. Dr. Joerg Borchert, Vice President, Chip Card & Security, Infineon Technologies North America Corp.; President and Chairman, Trusted Computing Group Embedded Systems Security provides real-world examples of risk and exploitation; most importantly the book offers clear insight into methods used to counter vulnerabilities to build true, native security into technology. Adriel Desautels, President and CTO, Netragard, LLC. Security of embedded systems is more important than ever. The growth in networking is just one reason. However, many embedded systems developers have insufficient knowledge of how to achieve security in their systems. David Kleidermacher, a world-renowned expert in this field, shares in this book his knowledge and long experience with other engineers. A very important book at the right time. Prof. Dr.-Ing. Matthias Sturm, Leipzig University of Applied Sciences; Chairman, Embedded World Conference steering board

Key Features

  • Gain an understanding of the operating systems, microprocessors, and network security critical issues that must be considered when designing secure embedded systems
  • Contains nuggets of practical and simple advice on critical issues highlighted throughout the text
  • Short and to –the- point real case studies included to demonstrate embedded systems security in practice


Entry level to senior Software Developers, Systems Engineers, Engineering Architets. Software developers and engineers in any computer software and/or network security field

Table of Contents

  • Dedication

    1. Introduction to Embedded Systems Security
    1.1 What is Security?
    1.2 What is an Embedded System?
    1.3 Embedded Security Trends
    1.4 Security Policies
    1.5 Security Threats
    1.6 Wrap-up
    1.7 Key Points
    1.8 Bibliography and Notes

    2. Systems Software Considerations
    2.1 The Role of the Operating System
    2.2 Multiple Independent Levels of Security
    2.3 Microkernel versus Monolith
    2.4 Core Embedded Operating System Security Requirements
    2.5 Access Control and Capabilities
    2.6 Hypervisors and System Virtualization
    2.7 I/O Virtualization
    2.8 Remote Management
    2.9 Assuring Integrity of the TCB
    2.10 Key Points
    2.11 Bibliography and Notes

    3. Secure Embedded Software Development
    3.1 Introduction to PHASE—Principles of High-Assurance Software Engineering
    3.2 Minimal Implementation
    3.3 Component Architecture
    3.4 Least Privilege
    3.5 Secure Development Process
    3.6 Independent Expert Validation
    3.7 Case Study: HAWS—High-Assurance Web Server
    3.8 Model-Driven Design
    3.9 Key Points
    3.10 Bibliography and Notes

    4. Embedded Cryptography
    4.1 Introduction
    4.2 U.S. Government Cryptographic Guidance
    4.3 The One-Time Pad
    4.4 Cryptographic Modes
    4.5 Block Ciphers
    4.6 Authenticated Encryption
    4.7 Public Key Cryptography
    4.8 Key Agreement
    4.9 Public Key Authentication
    4.10 Elliptic Curve Cryptography
    4.11 Cryptographic Hashes
    4.12 Message Authentication Codes
    4.13 Random Number Generation
    4.14 Key Management for Embedded Systems
    4.15 Cryptographic Certifications
    4.16 Key Points
    4.14 Bibliography and Notes

    5. Data Protection Protocols for Embedded Systems
    5.1 Introduction
    5.2 Data-in-Motion Protocols
    5.3 Data-at-Rest Protocols
    5.4 Key Points
    5.5 Bibliography and Notes

    6. Emerging Applications
    6.1 Embedded Network Transactions
    6.2 Automotive Security
    6.3 Secure Android
    6.4 Next-Generation Software-Defined Radio
    6.5 Key Points
    6.6 Bibliography and Notes

Product details

  • No. of pages: 416
  • Language: English
  • Copyright: © Newnes 2012
  • Published: March 16, 2012
  • Imprint: Newnes
  • eBook ISBN: 9780123868879
  • Paperback ISBN: 9780123868862

About the Authors

David Kleidermacher

David Kleidermacher is Chief Technology Officer at Green Hills Software where he is responsible for technology strategy, platform planning, and solutions design. Kleidermacher is a leading authority in systems software and security, including secure operating systems and virtualization technology. Kleidermacher is one of the original authors of INTEGRITY, the first and only operating system technology certified to EAL 6+ High Robustness, the highest Common Criteria security level ever achieved for a software product. Kleidermacher earned his bachelor of science in computer science from Cornell University and has been the world’s most prolific writer and speaker on embedded systems security over the past decade. He has been with Green Hills Software since 1991.

Affiliations and Expertise

CTO, Green Hills Software, Santa Barbara, USA

Mike Kleidermacher

Mike Kleidermacher is a retired electrical engineer whose 45 year career was dedicated to the design, implementation, and strategic evolution of secure embedded communications devices. Mike held various positions, including program manager, technical director, and chief engineer, within GE Aerospace, Lockheed Martin, and L-3 Communications and specialized in hardware and systems engineering for Type-1 NSA certified communications systems. With his countless contributions to innovative products such as the Army’s Mobile Subscriber Equipment, Ricebird crypto chip, Talon network encryptor, and Guardian secure smartphone, Mike is a legend in the United States INFOSEC/COMSEC communities. Mike holds a Top Secret / SCI U.S. government clearance and numerous patents related to the design and implementation of embedded security hardware. Mike received his master of science in electrical engineering from the University of Pennsylvania.

Affiliations and Expertise

Elite Corp, Camden, NJ, USA

Ratings and Reviews

Write a review

There are currently no reviews for "Embedded Systems Security"