[Dshield] Embedded Systems Security Best Practices

Jon Kibler Jon.Kibler at aset.com
Sat Jan 17 22:03:17 GMT 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

I have spent most of the day wading through various web sites looking
for best practices for embedded systems security, particularly for
hardening embedded Linux systems. There seems to be a dearth of real
information.

What I have been able to find is:
  -- some NIST practices that are technology specific (such as RFID);
  -- some consultants trying to sell documents of their best practices;
  -- some really weak articles in industry trade pubs;
  -- some "reprint for sale" academic articles (mostly IEEE);
  -- a book ("Practical Embedded Security: Building Secure
Resource-Constrained Systems") that seem to be rather high level, and
programming and network oriented, rather than systems hardening
  -- a couple of other books, that also seem to be networking and
programmer, or theoritical oriented.

What I am looking for specifically is:
  -- Hardening and security best practices for embedded Linux,
  -- Hardening and security best practices for non-Intel embedded
processors (e.g., ARM, Blackfin, Coldfire, MIPS, PPC, Xscale, etc.).

Does anyone have any recommendations for embedded systems security best
practices guidelines/manuals/books/documentation?

THANKS!

Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC  USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224
http://www.linkedin.com/in/jonrkibler

My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAklyVZgACgkQUVxQRc85QlM36QCfQ/2yn18MAeF/XYRRjomLdu8/
SpUAn2z0dvNf4NLabjocgfqpZsdXjqQv
ÂiH
-----END PGP SIGNATURE-----




=========================
Filtered by: TRUSTEM.COM's Email Filtering Service
http://www.trustem.com/
No Spam. No Viruses. Just Good Clean Email.



More information about the Dshield mailing list