Security evaluation of microcontrollers: a case study in smart watches

Security evaluation of microcontrollers: a case study in smart watches

Smart watches contain sensitive information like application software, user health and fitness data. Some of these data are often stored in embedded flash memory in microcontrollers. Here we explore two flash memory reading techniques to evaluate data security in smart watches against hardware attac...

Full description

Saved in:
Bibliographic Details
Main Authors: Zeng, Xiaomei, Liu, Qing, Chua, Chung Tah, Chef, Samuel, Gan, Chee Lip
Other Authors: School of Materials Science and Engineering
Format: Conference or Workshop Item
Language:English
Published: 2024
Subjects:
Engineering
Logical data acquisition
Selective staining
Hardware security
Smart watch
Online Access:https://hdl.handle.net/10356/173697
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Nanyang Technological University
Language: English
id sg-ntu-dr.10356-173697
record_format dspace
spelling sg-ntu-dr.10356-1736972024-02-29T15:31:32Z Security evaluation of microcontrollers: a case study in smart watches Zeng, Xiaomei Liu, Qing Chua, Chung Tah Chef, Samuel Gan, Chee Lip School of Materials Science and Engineering 2023 IEEE International Symposium on the Physical and Failure Analysis of Integrated Circuits (IPFA) Temasek Laboratories Engineering Logical data acquisition Selective staining Hardware security Smart watch Smart watches contain sensitive information like application software, user health and fitness data. Some of these data are often stored in embedded flash memory in microcontrollers. Here we explore two flash memory reading techniques to evaluate data security in smart watches against hardware attacks. One technique is the common approach of logical data acquisition, which is non-invasive and access the data through debug interface. It dumps the whole flash memory content based on its logical address. The other technique is a new selective staining approach. It extracts data directly from memory cells and requires invasive sample preparation. It extracts all binary bits in the flash memory based on its physical address. These two techniques are complementary to one another and ensure the accuracy of extracted memory content. The nature of data in the flash memory was confirmed by comparing the data between a new and a used watch. Majority of the flash memory was used for application software, with a small region found reserved to store the last shutdown information of the watch. National Research Foundation (NRF) Submitted/Accepted version This research is supported by the National Research Foundation, Singapore, and Cyber Security Agency of Singapore under its National Cybersecurity R&D Programme (NRF2018NCR-NCR009-0001). 2024-02-23T04:52:08Z 2024-02-23T04:52:08Z 2023 Conference Paper Zeng, X., Liu, Q., Chua, C. T., Chef, S. & Gan, C. L. (2023). Security evaluation of microcontrollers: a case study in smart watches. 2023 IEEE International Symposium on the Physical and Failure Analysis of Integrated Circuits (IPFA). https://dx.doi.org/10.1109/IPFA58228.2023.10249184 979-8-3503-0164-9 1946-1550 https://hdl.handle.net/10356/173697 10.1109/IPFA58228.2023.10249184 en NRF2018 NCR-NCR009-0001 © 2023 IEEE. All rights reserved. This article may be downloaded for personal use only. Any other use requires prior permission of the copyright holder. The Version of Record is available online at http://doi.org/10.1109/IPFA58228.2023.10249184. . application/pdf
institution Nanyang Technological University
building NTU Library
continent Asia
country Singapore
Singapore
content_provider NTU Library
collection DR-NTU
language English
topic Engineering
Logical data acquisition
Selective staining
Hardware security
Smart watch
spellingShingle Engineering
Logical data acquisition
Selective staining
Hardware security
Smart watch
Zeng, Xiaomei
Liu, Qing
Chua, Chung Tah
Chef, Samuel
Gan, Chee Lip
Security evaluation of microcontrollers: a case study in smart watches
description Smart watches contain sensitive information like application software, user health and fitness data. Some of these data are often stored in embedded flash memory in microcontrollers. Here we explore two flash memory reading techniques to evaluate data security in smart watches against hardware attacks. One technique is the common approach of logical data acquisition, which is non-invasive and access the data through debug interface. It dumps the whole flash memory content based on its logical address. The other technique is a new selective staining approach. It extracts data directly from memory cells and requires invasive sample preparation. It extracts all binary bits in the flash memory based on its physical address. These two techniques are complementary to one another and ensure the accuracy of extracted memory content. The nature of data in the flash memory was confirmed by comparing the data between a new and a used watch. Majority of the flash memory was used for application software, with a small region found reserved to store the last shutdown information of the watch.
author2 School of Materials Science and Engineering
author_facet School of Materials Science and Engineering
Zeng, Xiaomei
Liu, Qing
Chua, Chung Tah
Chef, Samuel
Gan, Chee Lip
format Conference or Workshop Item
author Zeng, Xiaomei
Liu, Qing
Chua, Chung Tah
Chef, Samuel
Gan, Chee Lip
author_sort Zeng, Xiaomei
title Security evaluation of microcontrollers: a case study in smart watches
title_short Security evaluation of microcontrollers: a case study in smart watches
title_full Security evaluation of microcontrollers: a case study in smart watches
title_fullStr Security evaluation of microcontrollers: a case study in smart watches
title_full_unstemmed Security evaluation of microcontrollers: a case study in smart watches
title_sort security evaluation of microcontrollers: a case study in smart watches
publishDate 2024
url https://hdl.handle.net/10356/173697
_version_ 1794549421703168000

Similar Items