| Title | SΜV - the Security Microvisor: A Virtualisation-based Security Middleware for the Internet of Things |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Daniels, Wilfried, Hughes, Danny, Ammar, Mahmoud, Crispo, Bruno, Matthys, Nelson, Joosen, Wouter |
| Conference Name | Proceedings of the 18th ACM/IFIP/USENIX Middleware Conference: Industrial Track |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-5200-0 |
| Keywords | Collaboration, composability, IoT, memory isolation, middleware security, policy, policy-based governance, pubcrawl, remote attestation, resilience, Resiliency, security |
| Abstract | The Internet of Things (IoT) creates value by connecting digital processes to the physical world using embedded sensors, actuators and wireless networks. The IoT is increasingly intertwined with critical industrial processes, yet contemporary IoT devices offer limited security features, creating a large new attack surface and inhibiting the adoption of IoT technologies. Hardware security modules address this problem, however, their use increases the cost of embedded IoT devices. Furthermore, millions of IoT devices are already deployed without hardware security support. This paper addresses this problem by introducing a Security MicroVisor (SmV) middleware, which provides memory isolation and custom security operations using software virtualisation and assembly-level code verification. We showcase SmV by implementing a key security feature: remote attestation. Evaluation shows extremely low overhead in terms of memory, performance and battery lifetime for a representative IoT device. |
| URL | http://doi.acm.org/10.1145/3154448.3154454 |
| DOI | 10.1145/3154448.3154454 |
| Citation Key | daniels_sv_2017 |
SΜV - the Security Microvisor: A Virtualisation-based Security Middleware for the Internet of Things