COVID-19 Update: We are currently shipping orders daily. However, due to transit disruptions in some geographies, deliveries may be delayed. To provide all customers with timely access to content, we are offering 50% off Science and Technology Print & eBook bundle options. Terms & conditions.
Embedded Systems Security - 1st Edition - ISBN: 9780123868862, 9780123868879

Embedded Systems Security

1st Edition

Practical Methods for Safe and Secure Software and Systems Development

Authors: David Kleidermacher Mike Kleidermacher
eBook ISBN: 9780123868879
Paperback ISBN: 9780123868862
Imprint: Newnes
Published Date: 16th March 2012
Page Count: 416
Sales tax will be calculated at check-out Price includes VAT/GST
Price includes VAT/GST

Institutional Subscription

Secure Checkout

Personal information is secured with SSL technology.

Free Shipping

Free global shipping
No minimum order.


The ultimate resource for making embedded systems reliable, safe, and secure

Embedded Systems Security provides:

  • A broad understanding of security principles, concerns, and technologies
  • Proven techniques for the efficient development of safe and secure embedded software
  • A study of the system architectures, operating systems and hypervisors, networking, storage, and cryptographic issues that must be considered when designing secure embedded systems
  • Nuggets of practical advice and numerous case studies throughout

Written by leading authorities in the field with 65 years of embedded security experience: one of the original developers of the world’s only Common Criteria EAL 6+ security certified software product and a lead designer of NSA certified cryptographic systems.

This book is indispensable for embedded systems and security professionals, new and experienced.

An important contribution to the understanding of the security of embedded systems. The Kleidermachers are experts in their field. As the Internet of things becomes reality, this book helps business and technology management as well as engineers understand the importance of "security from scratch." This book, with its examples and key points, can help bring more secure, robust systems to the market.

  • Dr. Joerg Borchert, Vice President, Chip Card & Security, Infineon Technologies North America Corp.; President and Chairman, Trusted Computing Group

Embedded Systems Security provides real-world examples of risk and exploitation; most importantly the book offers clear insight into methods used to counter vulnerabilities to build true, native security into technology.

  • Adriel Desautels, President and CTO, Netragard, LLC.

Security of embedded systems is more important than ever. The growth in networking is just one reason. However, many embedded systems developers have insufficient knowledge of how to achieve security in their systems. David Kleidermacher, a world-renowned expert in this field, shares in this book his knowledge and long experience with other engineers. A very important book at the right time.

  • Prof. Dr.-Ing. Matthias Sturm, Leipzig University of Applied Sciences; Chairman, Embedded World Conference steering board

Key Features

  • Gain an understanding of the operating systems, microprocessors, and network security critical issues that must be considered when designing secure embedded systems
  • Contains nuggets of practical and simple advice on critical issues highlighted throughout the text
  • Short and to –the- point real case studies included to demonstrate embedded systems security in practice


Entry level to senior Software Developers, Systems Engineers, Engineering Architets. Software developers and engineers in any computer software and/or network security field.

Table of Contents





Chapter 1. Introduction to Embedded Systems Security

1.1 What is Security?

1.2 What is an Embedded System?

1.3 Embedded Security Trends

1.4 Security Policies

1.5 Security Threats

1.6 Wrap-up

1.7 Key Points

1.8 Bibliography and Notes

Chapter 2. Systems Software Considerations

2.1 The Role of the Operating System

2.2 Multiple Independent Levels of Security

2.3 Microkernel versus Monolith

2.4 Core Embedded Operating System Security Requirements

2.5 Access Control and Capabilities

2.6 Hypervisors and System Virtualization

2.7 I/O Virtualization

2.8 Remote Management

2.9 Assuring Integrity of the TCB

2.10 Key Points

2.11 Bibliography and Notes

Chapter 3. Secure Embedded Software Development

3.1 Introduction to PHASE—Principles of High-Assurance Software Engineering

3.2 Minimal Implementation

3.3 Component Architecture

3.4 Least Privilege

3.5 Secure Development Process

3.6 Independent Expert Validation

3.7 Case Study: HAWS—High-Assurance Web Server

3.8 Model-Driven Design

3.9 Key Points

3.10 Bibliography and Notes

Chapter 4. Embedded Cryptography

4.1 Introduction

4.2 U.S. Government Cryptographic Guidance

4.3 The One-Time Pad

4.4 Cryptographic Modes

4.5 Block Ciphers

4.6 Authenticated Encryption

4.7 Public Key Cryptography

4.8 Key Agreement

4.9 Public Key Authentication

4.10 Elliptic Curve Cryptography

4.11 Cryptographic Hashes

4.12 Message Authentication Codes

4.13 Random Number Generation

4.14 Key Management for Embedded Systems

4.15 Cryptographic Certifications

4.16 Key Points

4.14 Bibliography and Notes

Chapter 5. Data Protection Protocols for Embedded Systems

5.1 Introduction

5.2 Data-in-Motion Protocols

5.3 Data-at-Rest Protocols

5.4 Key Points

5.5 Bibliography and Notes

Chapter 6. Emerging Applications

6.1 Embedded Network Transactions

6.2 Automotive Security

6.3 Secure Android

6.4 Next-Generation Software-Defined Radio

6.5 Key Points

6.6 Bibliography and Notes



No. of pages:
© Newnes 2012
16th March 2012
eBook ISBN:
Paperback ISBN:

About the Authors

David Kleidermacher

David Kleidermacher is Chief Technology Officer at Green Hills Software where he is responsible for technology strategy, platform planning, and solutions design. Kleidermacher is a leading authority in systems software and security, including secure operating systems and virtualization technology. Kleidermacher is one of the original authors of INTEGRITY, the first and only operating system technology certified to EAL 6+ High Robustness, the highest Common Criteria security level ever achieved for a software product. Kleidermacher earned his bachelor of science in computer science from Cornell University and has been the world’s most prolific writer and speaker on embedded systems security over the past decade. He has been with Green Hills Software since 1991.

Affiliations and Expertise

CTO, Green Hills Software, Santa Barbara, USA

Mike Kleidermacher

Mike Kleidermacher is a retired electrical engineer whose 45 year career was dedicated to the design, implementation, and strategic evolution of secure embedded communications devices. Mike held various positions, including program manager, technical director, and chief engineer, within GE Aerospace, Lockheed Martin, and L-3 Communications and specialized in hardware and systems engineering for Type-1 NSA certified communications systems. With his countless contributions to innovative products such as the Army’s Mobile Subscriber Equipment, Ricebird crypto chip, Talon network encryptor, and Guardian secure smartphone, Mike is a legend in the United States INFOSEC/COMSEC communities. Mike holds a Top Secret / SCI U.S. government clearance and numerous patents related to the design and implementation of embedded security hardware. Mike received his master of science in electrical engineering from the University of Pennsylvania.

Affiliations and Expertise

Elite Corp, Camden, NJ.


"The illustrations are a very strong part of this book. They are well conceived, always to the point, and in color. One interesting editorial feature is the so-called ‘Key Points,’ boxes that interrupt the text with a framed statement emphasizing a single important aspect. In addition, the book has very good bibliographical notes, which are extremely rare in this type of publication. Each chapter is followed by an extensive list of relevant citations, often with accompanying explanations…Overall, the book is very enlightening and engineers can learn a lot from it."--Computing, December 28, 2012
"Embedded Systems Security provides real-world examples of risk and exploitation; most importantly the book offers clear insight into methods used to counter vulnerabilities to build true, native security into technology."--Adriel Desautels, President and CTO, Netragard, LLC
"Written by leading authorities on security in embedded systems (a lead designer of an NSA certified cryptographic system and a lead developer on the single highest rated software product in the Common Criteria security certification rating system), this book provides an overview of security principles, vulnerability concerns and applicable technologies. Real world examples of system weakness and exploitation illustrate the need for security in development and give practical advice for effective techniques to counteract threats. Areas addressed include data protection protocols, emerging embedded systems, networking, cryptography, system architecture, hypervisors, operating systems and storage."--Reference and Research Book News, August 2012, page 186

Ratings and Reviews