Online Training
Languages Programmable Logic Embedded Real-Time Systems Safety and security Linux

Calendar Details

Operating Systems
System Workbench Android Linux RTOS Drivers

Calendar Details

Programming
Methods Languages Safety and security Real-Time Internet Logique Programmable
Calendar Details

Processors
ARM Cores NXP ARM SoCs ST processors TI processors NXP Power CPUs

Calendar Details

Communication
Connectivity Network Storage



Calendar Details

Developing Secure Embedded Systems

Advanced Embedded Systems Security

Comprehensive Secure Systems Programming

wolfSSL for Embedded Security

Advanced wolfSSL for Embedded Security

Comprehensive Security with WolfSSL

Embedded Security for STM32−based devices

Embedded Security for NXP i.MX−based processors

ARM TrustZone for Cortex−M based devices

Critical Systems Safety

wolfSSL for Embedded Security

Advanced wolfSSL for Embedded Security

ac6 >> ac6-training >> Programming >> Safety and security >> Developing Secure Embedded Systems

SEC1 Developing Secure Embedded Systems

Secure C/C++ and RUST Development

Objectives

Introduction to embedded security and industry standards, including ISO/SAE 214341, IEC 62443, NIST SP 800-53, Common Criteria, and OWASP.
Learn about secure coding practices for C/C++ programming languages, including best practices for memory management, input validation, and error handling.
Introduce the RUST programming language and its built-in security features, including memory safety and type safety.
Learn about secure software development methodologies, including threat modeling, secure design principles, and secure coding standards.
Introduce techniques for ensuring security in embedded systems, including security testing, security provisioning, and secure boot processes.
Introduce cryptography in embedded system.
The course covers the design and implementation of secure embedded system hardware architecture, including secure boot processes and secure communication protocols.
Learn about secure communication in embedded systems, including network protocols, secure communication protocols, and secure data transfer.
Get an overview of security issues and best practices for Internet of Things (IoT) devices and systems.

Prerequisites

Some programming concepts are desirable (whatever language)

Course environment

Theoretical course

PDF course material (in English)
Course dispensed using the Teams video-conferencing system
The trainer to answer trainees’ questions during the training and provide technical and pedagogical assistance through the Teams video-conferencing system

Practical activities

Practical activities represent from 40% to 50% of course duration
One Online Linux PC per trainee for the practical activities
The trainer has access to trainees’ Online PCs for technical and pedagogical assistance

Downloadable preconfigured virtual machine for post-course practical activities

Duration

Total: 18 hours
3 sessions, 6 hours each
From 40% to 50% of training time is devoted to practical activities
Some Labs may be completed between sessions and are checked by the trainer on the next session

First Session

Introduction to Embedded Security

Embedded Security Trends

Embedded Systems Complexity
Sophisticated Attacks
Processor Consolidation

Security Policies

Perfect Security ?
Embedded Security Challenges
Confidentiality, Integrity and Availability
Isolation
Information Flow Control
Physical Security Policies

Security Threats

Summary of issues
Cyberattack exploits

Legacy Systems

Updatability
Securing Legacy Systems
Project Requirements
Performance ?

Security standards
IoT recommended Security standards

Secure C/C++ Code

Secure C

Preprocessor and macros
Compilation, Declaration, definition, and initialization
Types
Pointers and arrays
Structure and unions
Expressions
Conditional and iterative structures
Functions
Memory Management
Error handling
Standard Libraries

Secure C++

Declarations and Initialization
Expressions
Integers
Containers
Characters and Strings
Memory Management
Input Output
Exceptions and Error Handling
Object Oriented Programming
Concurrency
Miscellaneous

Exercise:

Debugging memory problems

Security in RUST

Development environment
Libraries
Language generalities
Memory management
Type system
Foreign function interface (FFI)
Recommendations

Second Session

Secure Software Development

Threat modelling

Introduction to threat modeling
Example threat models

Risk analysis
Software Assurance Maturity Model (SAMM)
Platform Security architecture (PSA)
Frameworks and Standards

NIST SP 800-160: Developing Cyber-Resilient Systems
ISO/SAE 214341: Road vehicles — Cybersecurity engineering
ISO/IEC 15408: Security, cybersecurity and privacy protection
IEC 651508: Functional Safety of electrical/electronic/programmable electronic safety-related systems
UL 2900-2-2: Software cybersecurity for network-connectable products

Security Knowledge Framework and Certifications

Ensuring security in Embedded Systems

Introduction
Security Testing

Penetration testing
Vulnerability scanning
Risk assessment
Static Analysis
Dynamic analysis
Protocol fuzzing

Security provisioning

Security configuration management
Identity and access management
Incident response and management
Compliance and regulatory requirements

Security Testing Tools overview

Cryptography introduction

Overview of cryptography
Classic Cryptography
Information assurance
Symmetric encryption
Asymmetric encryption
Random number generation
Integrity and authentication
Access authentication
Elliptic Curve cryptography
Certificates and Public Key infrastructures
Rules and recommendations

Exercise:	Encryption/Decryption
Exercise:	Private/Public Keys
Exercise:	Authentication and Integrity on IoT Devices

Third Session

Secure Embedded System Hardware Architecture

Crypto-Accelerator Overview
ARM TrustZone
Intel Software Guard eXtensions
SoC Security overview

Memory Protection
Trusted Boot and Firmware update overview
Secure Elements
Trusted Platform Module (TPM)
Hardware Security Module (HSM)

Exercise:	Secure boot
Exercise:	ARM TrustZone application (secure/non secure)

Overview of Secure Communication in embedded Systems

Introduction
Transport Layer Security (TLS)
IPsec/IKE
Network layer

Bluetooth
WiFi
5G
NFC
RFID
SigFox

IoT security

Secured IoT architecture
IoT standard and recommendations
Software development architecture and practices
Cryptology
Software security
Hardware protection
Network security
Life cycle and support

Duration	Cost	Calendar
18 hours	2290 € HT
Last update: 20 December 2021
This course, designed for face-to-face delivery, can be provided either in our Paris training center or, worldwide, on your premises. Scheduled classes are confirmed as soon as there is a confirmed booking.
A version tailored for live online delivery is available under reference oSEC2 - Advanced Embedded Systems Security
To book a training session or for more information, please contact us on info@ac6-training.com. Registrations are accepted till one week before the start date for scheduled classes. For late registrations, please consult us. You can also fill and send us the registration form
Booking one of our trainings is subject to our General Terms of Sales