Visible to the public An object-oriented open software architecture for security applications

TitleAn object-oriented open software architecture for security applications
Publication TypeConference Paper
Year of Publication2017
AuthorsFarulla, G. A., Pane, A. J., Prinetto, P., Varriale, A.
Conference Name2017 IEEE East-West Design Test Symposium (EWDTS)
PublisherIEEE
ISBN Number978-1-5386-3299-4
Keywordsapplication program interfaces, composability, CPU, data protection, dedicated Open Hardware devices, field programmable gate arrays, Hardware, Libraries, Metrics, multiplatform Open Source security framework, object oriented security, object-oriented open software architecture, Open Hardware security platform, Pins, pubcrawl, public key cryptography, resilience, Resiliency, SEcube™ platform, secure communication, secure messaging, security, security APIs, security applications, security device, security of data, smart cards, Software, software architecture, Universal Serial Bus
Abstract

This paper introduces a newly developed Object-Oriented Open Software Architecture designed for supporting security applications, while leveraging on the capabilities offered by dedicated Open Hardware devices. Specifically, we target the SEcube(tm) platform, an Open Hardware security platform based on a 3D SiP (System on Package) designed and produced by Blu5 Group. The platform integrates three components employed for security in a single package: a Cortex-M4 CPU, a FPGA and an EAL5+ certified Smart Card. The Open Software Architecture targets both the host machine and the security device, together with the secure communication among them. To maximize its usability, this architecture is organized in several abstraction layers, ranging from hardware interfaces to device drivers, from security APIs to advanced applications, like secure messaging and data protection. We aim at releasing a multi-platform Open Source security framework, where software and hardware cooperate to hide to both the developer and the final users classical security concepts like cryptographic algorithms and keys, focusing, instead, on common operational security concepts like groups and policies.

URLhttps://ieeexplore.ieee.org/document/8110070
DOI10.1109/EWDTS.2017.8110070
Citation Keyfarulla_object-oriented_2017