Presentation is loading. Please wait.

Presentation is loading. Please wait.

Securing the Internet of (broken) Things Cesare Garlati, Chief Security Strategist, prpl Foundation.

Similar presentations


Presentation on theme: "Securing the Internet of (broken) Things Cesare Garlati, Chief Security Strategist, prpl Foundation."— Presentation transcript:

1 Securing the Internet of (broken) Things Cesare Garlati, Chief Security Strategist, prpl Foundation

2 OpenWrt Summit 2015 – Dublin IE Securing the Internet of (broken) things Source: Remote Exploitation of an Unaltered Passenger Vehicle, Dr. Charlie Miller and Chris Valasek, August 2015 1.4M FIAT CHRYSLER RECALLS 1.4 MILLION VEHICLES AUGUST 2015 FDA STRONGLY ENCOURAGE TO DISCONTINUE USE OF THESE PUMPS - MAY 2015 CHARLIE & CHRIS HOSPIRA DRUG PUMP FBI Reverse engineer proprietary software to expose vulnerabilities [Uconnect 8.4AN/RA4]  Exploit weak implementations of network protocols [D-BUS service port 6667]  Modify firmware and re- flash image to execute arbitrary code [TI OMAP-DM3730]  Laterally move from the compromised head unit to the target CAN system [CAN mcu Renesas v850]  OPEN SOURCEINTEROPERABILITYROOT OF TRUSTVIRTUALIZATION BOEING 737/800

3 prpl Open security framework Linux Containers Secure Boot Key mgm’t Crypto HW Secure JTAG & Debug Secure Video Streams HypervisorMultitenant Service Provisioning Common security framework across hardware and software components in both single tenant and multitenant use cases OpenWrt Summit 2015 – Dublin IE

4 Multitenant use case Provider #1 Commercial Wi-Fi public hotspot 2 Provider #3 Utility company eMeter / IoT 3 1 Provider #1 Base services LTE/DSL/Wi-Fi 4 Provider #4 pay per view video streaming ? Available to next provider OpenWrt Summit 2015 – Dublin IE

5 Multitenant security  across hardware - cpus, mem, gpus, cameras, networks, radios, …   across software - hypervisor, OS, containers, apps  Multidomain Security New multitenant use cases – not just trusted/not-trusted islands Strong security model perfectly fits new multicore scenarios Hypervisor based – does not require OS modifications Open source framework and APIs – no royalties Reference framework open to ecosystem partners development HARDWARE OFFLOADS NETWORK INTERFACE DRAM OS / KERNEL HYPERVISOR HETEROGENEOUS PLATFORM IPC KERNEL LAN CLOUD API SECURE APP’S BASELINE SOFTWARE BROADBAND CLOUD API SECURE BOOT KERNEL WAN HW SW SECURE SEPARATED CONTAINERS OpenWrt Summit 2015 – Dublin IE

6 cesare@prplfoundation.orghttp://prpl.works


Download ppt "Securing the Internet of (broken) Things Cesare Garlati, Chief Security Strategist, prpl Foundation."

Similar presentations


Ads by Google