Presentation is loading. Please wait.

Presentation is loading. Please wait.

Zephyr™ Project Security

Published byRobyn Horn Modified over 7 years ago

Similar presentations

Presentation on theme: "Zephyr™ Project Security"— Presentation transcript:

1 Zephyr™ Project Security
Constanza Heath Security Researcher

2 Overview About Me Intro to Zephyr What We’re Trying To Protect From
Secure Development Lifecycle TinyCrypt Possible Future Directions

3 About Me Constanza Heath, Security Researcher, Intel Open Source Technology Center 1998 Time Warner Cable’s Information Technology Dept. 2003 Raytheon’s Vision Systems, Remote Satellite, and Electronic Warfare divisions. 2004 Hewlett Packard’s Imaging Product Group, All-in-One Division, and Photosmart Printer Division. Joined Intel in 2010. Previously worked on Moblin, MeeGo and Tizen operating systems. Career up and down the software stack, making security a natural discipline. Design core security features, review architctures, and implement secure software solutions. Currently focused on IoT security and enablement and Cloud OSs. IRC freenode: 'mnementh’ |

4 What is Zephyr? Microcontroller operating system
Very small memory footprint (will run in 8k) Open Source under Apache* 2.0 license, hosted by Linux* Foundation Supports multiple architectures

5 Permissively Licensed
Why Zephyr Project? Strategic Investment Best-of-Breed RTOS True Open Source Secure Permissively Licensed Established Code Base

6 Zephyr Overview Applications 3rd Party Libraries Provide an OS that runs best on MCUs for wearable and IoT devices, where the cost of the silicon is minimal Highly Configurable, Highly Modular Kernel mode only Two Modes: Nanokernel: Limited functionality targeting small footprint (below 10k) Microkernel (superset of nanokernel): with additional functionality and features No user-space and no dynamic runtimes Memory and Resources are typically statically allocated Cross architecture (IA32, ARM*, ARC, others under discussion) C APIs CoAP, MQTT*, HTTP*, LWM2M* DTLS, TLS, .. IPv4*, IPv6 6LowPAN Device Management Device Drivers Power Management Microkernel Nanokernel Nanokernel Platform UART SPI GPIO I2C Radios * planned

7 Zephyr Nanokernel Overview
A high-performance, multi-threaded execution environment with a basic set of kernel features Ideal for systems with sparse memory (the kernel itself requires as little as 2 KB!) or only simple multi-threading requirements (such as a set of interrupt handlers and a single background task) Examples of such systems include: embedded sensor hubs environmental sensors simple LED wearables store inventory tags

8 Zephyr Microkernel Overview
Supplements the capabilities of the nanokernel to provide a richer set of kernel features Suitable for systems with heftier memory (50 to 900 KB) multiple communication devices (like Wi-Fi and Bluetooth® Low Energy) and multiple data processing tasks Examples of such systems include: Fitness wearables Smart watches IoT wireless gateways

9 ► More platforms and boards to follow ◀
Supported Platforms Arduino* 101 Intel® Quark™ D2000 CRB 2nd Generation Intel® Galileo FRDM-K64F Arduino Due ► More platforms and boards to follow ◀

10 Anas Nashif - Zephyr™ Project Overview Tuesday, April 5, 2016

11 Security Standardized building block and robust communication stacks
Stack Protection Secure Boot, TEE** HW Crypto Engine Device Management: LWM2M DTLS CoAP, MQTT, HTTP Cloud Services Crypto Libraries and Services Device Security Communication Security IPv4 IPv6/6LoWPAN Standardized building block and robust communication stacks Cryptographic library based on TinyCrypt Static and single binary applications, Single address space, No loadable modules Planned security features: Device Management and Updates APIs to support vendor specific Crypto implementations (SW/HW) Secure Key Storage

12 What’s Out There?

13 Not Your Mother’s Hacker
Security Researchers in Top from left: Joanna Rukowska, Charlie Miller, Arrigo Triulzi Bottom from left: Gal Diskin, John Oberhide, Dan Rosenberg

14 Security Hackers Ecosystem
National Interest Personal Gain Personal Fame Curiosity Spy Spy Fastest growing segment Thief Trespasser Tools created by experts now used by less-skilled attackers and criminals Author Vandal The World Today Script-Kiddy Hobbyist Hacker Expert Specialist

15 Just in the last few Months!
”Two newly-discovered flaws light fire under IoT security” -ZDNet “’Internet of Things’ security is hilariously broken and getting worse” –Ars Technica “Internet of things security years away from being fully baked, says Forrester” -ZDNet ”Princeton researches find security flaws in IoT devices” - Engadget ”Internet of Things Security Problem Just Keeps Getting Bigger” -eWeek Just in the last few Months!

16 Zephyr™ Project Secure Development Lifecycle

17 New Zephyr™ Project Features
Take new features through Security Risk Assessment Security Risk Assessment determines what security review takes place Security features get extra scrutiny Review based on: Initial touch feature review Use of cryptography Compliance with Threat Model Incorporation into Security Architecture

18 Zephyr™ Project Code Review
Why do Code Review? No one writes perfect code Ensure code complies with rest of communities expectations All code goes through review in Gerrit Ensure appropriate string/memory function use Validate user input Readability & Maintainability Correct Functionality Security review of all security relevant code

19 Zephyr™ Project Static Code Analysis
Why Static Code Analyze Zephyr? Developers aren’t perfect at code review either Static Analysis (despite significant false positives) identifies low-hanging functional and security defects It also finds some complex and hard to identify issues All code goes through static code analysis Fix all identified significant issues Considering utilizing as project solution

20 Zephyr™ Project Survivability
Why Survivability? Projects Upstream of Zephyr will have security vulnerabilities discovered Ensure Zephyr knows how to respond when a security issue is found Team ready to respond to security issues Project Practices “Responsible Disclosure”

21 TinyCrypt

22 Zephyr™ Project Crypto Needs
Cryptographic protections have become standard for almost all forms of communication If Zephyr is going to talk to things, it needs to talk crypto Complication: Standard cryptographic libraries like OpenSSL are orders of magnitude larger than Zephyr target platforms. What to do?

23 Let’s see what’s available!
EUREKA! Let’s see what’s available!

24 TinyCrypt Is Born Cryptographic Experts in Intel Labs had been looking at the problem They had an internal codebase they had already been working on which met Zephyr’s needs Zephyr knew this codebase would be useful for other projects TinyCrypt was made its own project Upstream Maintainer: Constanza Heath Goals: Minimize code size of each crypto primitive Minimize dependencies among primitive implementations Multiple architecture

25 Can be utilized by TLS libraries
TinyCrypt Provides AES-CTR AES mode of operation Defined in NIST SP A Requires AES-128 AES-CMAC Message authentication code Defined in NIST SP B AES-CCM Authenticated encryption Defined in NIST SP C ECC-DH Key Exchange Defined in RFC 6090 Requires ECC auxiliary functions ECC-DSA Digital Signature SHA-256 Hash function Defined in NIST FIPS PUB 180-4 HMAC-SHA256 Message authentication code Defined in RFC 2104 Requires SHA-256 HMAC-PRNG Pseudo-random number generator Defined in NIST SP A Requires SHA-256 & HMAC-SHA256 AES-128 Block cipher Defined in NIST FIPS PUB 197 AES-CBC AES mode of operation Defined in NIST SP A Requires AES-128 Can be utilized by TLS libraries

26 Looking Forward

27 Future Directions Memory Protections Device Management and Updates
APIs to support vendor specific Crypto implementations (SW/HW) Secure Key Storage Your Ideas?

28 Summary Zephyr Project is… Being proactive about security
Looking at the environment that we are deploying into for security concerns Ensuring software is being constructed correctly from a security perspective Including a new, novel cryptographic library in TinyCrypt Looking for feedback on what’s useful for future directions of security

29 Zephyr™ Project Demos from our member companies
Visit Us! Booth #108 Zephyr™ Project Demos from our member companies Other Zephyr™ Project ELC/OpenIoT Zephyr™ Project Security Monday, April 4, 2016 Harbor Ballroom E Zephyr™ Project Overview Tuesday, April 5, 2016 Power Management in Zephyr™ RTOS Wednesday, April 6, 2016

30

31 Zephyr Kernel – Key Features
Multi-threading services, including both priority-based, non-preemptive fibers and priority-based, preemptive tasks (with optional round robin time-slicing). Interrupt services, including both compile-time and run-time registration of interrupt handlers, which can be written in C or assembly language. Inter-thread synchronization services, including binary semaphores, counting semaphores, and mutex semaphores. Inter-thread data passing services, including basic message queues, enhanced message queues, and byte streams. Memory allocation services, including dynamic allocation and freeing of fixed-size or variable-size memory blocks.

32 Zephyr Kernel – Key Features
Power management services, including tick-less idle and an advanced idling infrastructure. Highly configurable, allowing an application to incorporate only the capabilities it needs, and to specify their quantity and size. Zephyr requires all system resources to be defined at compile-time to reduce code size and increase performance. Provides minimal run-time error checking to reduce code size and increase performance. An optional error checking infrastructure is provided that can assist in debugging during application development Library based RTOS ("kernel-less")

33 Best-of-Breed Tools Kbuild - The build system of the Linux kernel
Kconfig - The configuration system of the Linux kernel Rich and Powerful SDK developed specifically for Zephyr and powered by the Yocto project: 5 different cross-compilers for all supported architectures and platforms Support for baremetal c library, based on newlib Host tools needed for debugging and downloading images (flashing) into target platforms Builds natively on Linux*, MacOS* and Microsoft* Windows Building on all various operating systems using Docker containers

Download ppt "Zephyr™ Project Security"

Similar presentations

Confidential 1 Phoenix Security Architecture and DevID July 2005 Karen Zelenko Phoenix Technologies.

Confidential 1 Phoenix Security Architecture and DevID July 2005 Karen Zelenko Phoenix Technologies.
Real-time Systems Lab, Computer Science and Engineering, ASU Please Standby Galileo Tech Talk at ASU Will Begin Shortly.

Real-time Systems Lab, Computer Science and Engineering, ASU Please Standby Galileo Tech Talk at ASU Will Begin Shortly.
Chorus and other Microkernels Presented by: Jonathan Tanner and Brian Doyle Articles By: Jon Udell Peter D. Varhol Dick Pountain.

Chorus and other Microkernels Presented by: Jonathan Tanner and Brian Doyle Articles By: Jon Udell Peter D. Varhol Dick Pountain.
Internet of Things with Intel Edison Presentation Paul Guermonprez Intel Software 2014-11-14.

Internet of Things with Intel Edison Presentation Paul Guermonprez Intel Software
Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.

Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.
Chapter 13 Embedded Systems

Chapter 13 Embedded Systems
Contiki A Lightweight and Flexible Operating System for Tiny Networked Sensors Presented by: Jeremy Schiff.

Contiki A Lightweight and Flexible Operating System for Tiny Networked Sensors Presented by: Jeremy Schiff.
INTRODUCTION OS/2 was initially designed to extend the capabilities of DOS by IBM and Microsoft Corporations. To create a single industry-standard operating.

INTRODUCTION OS/2 was initially designed to extend the capabilities of DOS by IBM and Microsoft Corporations. To create a single industry-standard operating.
Chapter 13 Embedded Systems

Chapter 13 Embedded Systems
1 Hannes Tschofenig. 2 The Internet of Things Today Enormous potential  “Tens of billions of new devices”  … but market growing slower than expected.

1 Hannes Tschofenig. 2 The Internet of Things Today Enormous potential  “Tens of billions of new devices”  … but market growing slower than expected.
Linux Cryptography overview and How-to’s using OpenSSL

Linux Cryptography overview and How-to’s using OpenSSL
Renesas Electronics America Inc. © 2012 Renesas Electronics America Inc. All rights reserved. Class ID: Instant Connectivity for the “Internet of Things”

Renesas Electronics America Inc. © 2012 Renesas Electronics America Inc. All rights reserved. Class ID: Instant Connectivity for the “Internet of Things”
Chapter 8 Windows 2000. 2 Outline Programming Windows 2000 System structure Processes and threads in Windows 2000 Memory management The Windows 2000 file.

Chapter 8 Windows Outline Programming Windows 2000 System structure Processes and threads in Windows 2000 Memory management The Windows 2000 file.
Renesas Electronics America Inc. © 2012 Renesas Electronics America Inc. All rights reserved. Class ID: Introduction to RoweBots’ Ultra Tiny Linux RTOS.

Renesas Electronics America Inc. © 2012 Renesas Electronics America Inc. All rights reserved. Class ID: Introduction to RoweBots’ Ultra Tiny Linux RTOS.
Java Security Pingping Ma Nov 2 nd, 2006. Overview Platform Security Cryptography Authentication and Access Control Public Key Infrastructure (PKI)

Java Security Pingping Ma Nov 2 nd, Overview Platform Security Cryptography Authentication and Access Control Public Key Infrastructure (PKI)
A Comparative Study of the Linux and Windows Device Driver Architectures with a focus on IEEE1394 (high speed serial bus) drivers Melekam Tsegaye

A Comparative Study of the Linux and Windows Device Driver Architectures with a focus on IEEE1394 (high speed serial bus) drivers Melekam Tsegaye
Class ID: Renesas Electronics America Inc. © 2012 Renesas Electronics America Inc. All rights reserved. Class ID: Using Virtual EEPROM and Flash API for.

Class ID: Renesas Electronics America Inc. © 2012 Renesas Electronics America Inc. All rights reserved. Class ID: Using Virtual EEPROM and Flash API for.
Wireless and Mobile Security

Wireless and Mobile Security
1.3 Operating system services An operating system provide services to programs and to the users of the program. It provides an environment for the execution.

1.3 Operating system services An operating system provide services to programs and to the users of the program. It provides an environment for the execution.
Sung-Dong Kim, Dept. of Computer Engineering, Hansung University Java - Introduction.

Sung-Dong Kim, Dept. of Computer Engineering, Hansung University Java - Introduction.

Similar presentations

Ads by Google