An object-oriented open software architecture for security applications
Title | An object-oriented open software architecture for security applications |
Publication Type | Conference Paper |
Year of Publication | 2017 |
Authors | Farulla, G. A., Pane, A. J., Prinetto, P., Varriale, A. |
Conference Name | 2017 IEEE East-West Design Test Symposium (EWDTS) |
Publisher | IEEE |
ISBN Number | 978-1-5386-3299-4 |
Keywords | application program interfaces, composability, CPU, data protection, dedicated Open Hardware devices, field programmable gate arrays, Hardware, Libraries, Metrics, multiplatform Open Source security framework, object oriented security, object-oriented open software architecture, Open Hardware security platform, Pins, pubcrawl, public key cryptography, resilience, Resiliency, SEcube™ platform, secure communication, secure messaging, security, security APIs, security applications, security device, security of data, smart cards, Software, software architecture, Universal Serial Bus |
Abstract | This paper introduces a newly developed Object-Oriented Open Software Architecture designed for supporting security applications, while leveraging on the capabilities offered by dedicated Open Hardware devices. Specifically, we target the SEcube(tm) platform, an Open Hardware security platform based on a 3D SiP (System on Package) designed and produced by Blu5 Group. The platform integrates three components employed for security in a single package: a Cortex-M4 CPU, a FPGA and an EAL5+ certified Smart Card. The Open Software Architecture targets both the host machine and the security device, together with the secure communication among them. To maximize its usability, this architecture is organized in several abstraction layers, ranging from hardware interfaces to device drivers, from security APIs to advanced applications, like secure messaging and data protection. We aim at releasing a multi-platform Open Source security framework, where software and hardware cooperate to hide to both the developer and the final users classical security concepts like cryptographic algorithms and keys, focusing, instead, on common operational security concepts like groups and policies. |
URL | https://ieeexplore.ieee.org/document/8110070 |
DOI | 10.1109/EWDTS.2017.8110070 |
Citation Key | farulla_object-oriented_2017 |
- public key cryptography
- Universal Serial Bus
- Software Architecture
- Software
- smart cards
- security of data
- security device
- security applications
- security APIs
- security
- secure messaging
- secure communication
- SEcube™ platform
- Resiliency
- resilience
- application program interfaces
- pubcrawl
- Pins
- Open Hardware security platform
- object-oriented open software architecture
- object oriented security
- multiplatform Open Source security framework
- Metrics
- Libraries
- Hardware
- field programmable gate arrays
- dedicated Open Hardware devices
- Data protection
- CPU
- composability