A3 Book section, Chapters in research books
Finding Software Bugs in Embedded Devices (2021)


Francillon, A., Thomas, S. L., & Costin, A. (2021). Finding Software Bugs in Embedded Devices. In J. Hernandez-Castro, & G. Avoine (Eds.), Security of Ubiquitous Computing Systems : Selected Topics (pp. 183-197). Springer. https://doi.org/10.1007/978-3-030-10591-4_11


JYU authors or editors


Publication details

All authors or editorsFrancillon, Aurélien; Thomas, Sam L.; Costin, Andrei

Parent publicationSecurity of Ubiquitous Computing Systems : Selected Topics

Parent publication editorsHernandez-Castro, Julio; Avoine, Gildas

ISBN978-3-030-10590-7

eISBN978-3-030-10591-4

Publication year2021

Pages range183-197

Number of pages in the book265

PublisherSpringer

Place of PublicationCham

Publication countrySwitzerland

Publication languageEnglish

DOIhttps://doi.org/10.1007/978-3-030-10591-4_11

Publication open accessOpenly available

Publication channel open accessOpen Access channel

Publication is parallel published (JYX)https://jyx.jyu.fi/handle/123456789/73705


Abstract

The goal of this chapter is to introduce the reader to the domain of bug discovery in embedded systems which are at the core of the Internet of Things. Embedded software has a number of particularities which makes it slightly different to general purpose software. In particular, embedded devices are more exposed to software attacks but have lower defense levels and are often left unattended. At the same time, analyzing their security is more difficult because they are very “opaque”, while the execution of custom and embedded software is often entangled with the hardware and peripherals. These differences have an impact on our ability to find software bugs in such systems. This chapter discusses how software vulnerabilities can be identified, at different stages of the software life-cycle, for example during development, during integration of the different components, during testing, during the deployment of the device, or in the field by third parties.


Keywordsubiquitous computingdata securityprogramming errors

Free keywordsembedded devices; security; software bugs


Contributing organizations

Other organizations:


Ministry reportingYes

Reporting Year2021

JUFO rating2


Last updated on 2024-03-04 at 19:56