{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:08:22Z","timestamp":1750219702205,"version":"3.41.0"},"reference-count":14,"publisher":"Association for Computing Machinery (ACM)","issue":"1","license":[{"start":{"date-parts":[[2023,10,30]],"date-time":"2023-10-30T00:00:00Z","timestamp":1698624000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["Ada Lett."],"published-print":{"date-parts":[[2023,10,30]]},"abstract":"As the Internet of Things (IoT) continues to expand, data security has become increasingly important for ensuring privacy and safety, especially given the sensitive and, sometimes, critical nature of the data handled by IoT devices. There exist hardware-based trusted execution environments used to protect data, but they are not compatible with low-cost devices that lack hardware-assisted security features. The research in this paper presents software-based protection and encryption mechanisms explicitly designed for embedded devices. The proposed architecture consists of two parts: the Agent, which is designed to work with low-cost, low-end devices without requiring modifications to the underlying hardware, and the Computing Module, which is designed for slightly more computationally powerful devices. The Computing Module enables devices to write data in protected memory and continuously verifies its integrity to provide protection. Additionally, it utilizes the Agents located on the device to safeguard device applications against attacks by requesting the Agent to generate an application code signature and validating it. The proposed solution is an alternative data security approach for low-cost IoT devices without compromising performance or functionality. Our work underscores the importance of developing secure and cost-effective solutions for protecting data in the context of IoT.<\/jats:p>","DOI":"10.1145\/3631483.3631495","type":"journal-article","created":{"date-parts":[[2023,10,31]],"date-time":"2023-10-31T16:07:02Z","timestamp":1698768422000},"page":"73-77","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["Software-Based Security Approach for Networked Embedded Devices"],"prefix":"10.1145","volume":"43","author":[{"given":"Jos\u00e9","family":"Ferreira","sequence":"first","affiliation":[{"name":"LASIGE, Departamento de Inform\u00e1tica, Faculdade de Ci\u00eancias da Universidade Lisboa,"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alan","family":"Oliveira","sequence":"additional","affiliation":[{"name":"LASIGE, Departamento de Inform\u00e1tica, Faculdade de Ci\u00eancias da Universidade Lisboa,"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andr\u00e9","family":"Souto","sequence":"additional","affiliation":[{"name":"LASIGE, Departamento de Inform\u00e1tica, Faculdade de Ci\u00eancias da Universidade Lisboa,"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jos\u00e9","family":"Cec\u00edlio","sequence":"additional","affiliation":[{"name":"LASIGE, Departamento de Inform\u00e1tica, Faculdade de Ci\u00eancias da Universidade Lisboa,"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,10,31]]},"reference":[{"key":"e_1_2_1_1_1","volume-title":"ACM","author":"Ammar M.","year":"2020","unstructured":"M. Ammar and B. Crispo , Verify&revive: Secure detection and recovery of compromised low-end embedded devices,\" in Annual Computer Security Applications Conference, (New York, NY), p. 717--732 , ACM , 2020 . M. Ammar and B. Crispo, Verify&revive: Secure detection and recovery of compromised low-end embedded devices,\" in Annual Computer Security Applications Conference, (New York, NY), p. 717--732, ACM, 2020."},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2019.2928541"},{"key":"e_1_2_1_3_1","first-page":"3843","volume-title":"MA)","author":"Grisafi M.","year":"2022","unstructured":"M. Grisafi , M. Ammar , M. Roveri , and B. Crispo , PISTIS: Trusted computing architecture for low-end embedded systems,\" in 31st USENIX Security Symposium, (Boston , MA) , pp. 3843 -- 3860 , Aug. 2022 . M. Grisafi, M. Ammar, M. Roveri, and B. Crispo, PISTIS: Trusted computing architecture for low-end embedded systems,\" in 31st USENIX Security Symposium, (Boston, MA), pp. 3843--3860, Aug. 2022."},{"key":"e_1_2_1_4_1","volume-title":"TCG specification architecture overview.\" https:\/\/trustedcomputinggroup. org\/wp-content\/uploads\/TCG\\_1\\_4\\ _Architecture\\_Overview.pdf","author":"T. C. Group","year":"2007","unstructured":"T. C. Group , TCG specification architecture overview.\" https:\/\/trustedcomputinggroup. org\/wp-content\/uploads\/TCG\\_1\\_4\\ _Architecture\\_Overview.pdf , 2007 . [Online - Accessed on 11--11--2022]. T. C. Group, TCG specification architecture overview.\" https:\/\/trustedcomputinggroup. org\/wp-content\/uploads\/TCG\\_1\\_4\\ _Architecture\\_Overview.pdf, 2007. [Online - Accessed on 11--11--2022]."},{"key":"e_1_2_1_5_1","volume-title":"Paper 2016\/086","author":"Costan V.","year":"2016","unstructured":"V. Costan and S. Devadas , Intel sgx explained.\" Cryptology ePrint Archive , Paper 2016\/086 , 2016 . https: \/\/eprint.iacr.org\/2016\/086. V. Costan and S. Devadas, Intel sgx explained.\" Cryptology ePrint Archive, Paper 2016\/086, 2016. https: \/\/eprint.iacr.org\/2016\/086."},{"key":"e_1_2_1_6_1","first-page":"445","volume-title":"Conf. on Collaboration and Internet Computing","author":"Ngabonziza B.","year":"2016","unstructured":"B. Ngabonziza , D. Martin , A. Bailey , H. Cho , and S. Martin , Trustzone explained: Architectural features and use cases,\" in 2nd IEEE Int . Conf. on Collaboration and Internet Computing , pp. 445 -- 451 , 2016 . B. Ngabonziza, D. Martin, A. Bailey, H. Cho, and S. Martin, Trustzone explained: Architectural features and use cases,\" in 2nd IEEE Int. Conf. on Collaboration and Internet Computing, pp. 445--451, 2016."},{"key":"e_1_2_1_7_1","first-page":"121874","volume-title":"Softee: Software-based trusted execution environment for user applications,\" IEEE Access","author":"Lee U.","year":"2020","unstructured":"U. Lee and C. Park , Softee: Software-based trusted execution environment for user applications,\" IEEE Access , vol. 8 , pp. 121874 -- 121888 , 2020 . U. Lee and C. Park, Softee: Software-based trusted execution environment for user applications,\" IEEE Access, vol. 8, pp. 121874--121888, 2020."},{"key":"e_1_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/2654822.2541986"},{"key":"e_1_2_1_9_1","first-page":"1429","volume-title":"CA)","author":"Nunes I.","year":"2019","unstructured":"I. Nunes , K. Eldefrawy , N. Rattanavipanon , M. Steiner , and G. Tsudik , VRASED: A verified Hardware\/Software Co-Design for remote attestation,\" in 28th USENIX Security Symposium, (Santa Clara , CA) , pp. 1429 -- 1446 , 2019 I. Nunes, K. Eldefrawy, N. Rattanavipanon, M. Steiner, and G. Tsudik, VRASED: A verified Hardware\/Software Co-Design for remote attestation,\" in 28th USENIX Security Symposium, (Santa Clara, CA), pp. 1429--1446, 2019"},{"key":"e_1_2_1_10_1","volume-title":"Smart: Secure and minimal architecture for (establishing a dynamic) root of trust,\" in 19th Annual Network and Distributed System Security Symposium","author":"Eldefrawy K.","year":"2012","unstructured":"K. Eldefrawy , A. Francillon , D. Perito , and G. Tsudik , Smart: Secure and minimal architecture for (establishing a dynamic) root of trust,\" in 19th Annual Network and Distributed System Security Symposium , February 5--8, San Diego, USA (ISOC, ed.), (San Diego) , 2012 . K. Eldefrawy, A. Francillon, D. Perito, and G. Tsudik, Smart: Secure and minimal architecture for (establishing a dynamic) root of trust,\" in 19th Annual Network and Distributed System Security Symposium, February 5--8, San Diego, USA (ISOC, ed.), (San Diego), 2012."},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/2592798.2592824"},{"key":"e_1_2_1_12_1","first-page":"1","volume-title":"Tytan: Tiny trust anchor for tiny devices,\" in 2015 52nd ACM\/EDAC\/IEEE Design Automation Conference (DAC)","author":"Brasser F.","year":"2015","unstructured":"F. Brasser , B. El Mahjoub , A.-R. Sadeghi , C. Wachsmann , and P. Koeberl , Tytan: Tiny trust anchor for tiny devices,\" in 2015 52nd ACM\/EDAC\/IEEE Design Automation Conference (DAC) , pp. 1 -- 6 , 2015 . F. Brasser, B. El Mahjoub, A.-R. Sadeghi, C. Wachsmann, and P. Koeberl, Tytan: Tiny trust anchor for tiny devices,\" in 2015 52nd ACM\/EDAC\/IEEE Design Automation Conference (DAC), pp. 1--6, 2015."},{"key":"e_1_2_1_13_1","unstructured":"NIST Lightweight cryptography.\" https:\/\/csrc.nist.gov\/projects\/ lightweight-cryptography. Accessed: 2022--12- 04. NIST Lightweight cryptography.\" https:\/\/csrc.nist.gov\/projects\/ lightweight-cryptography. Accessed: 2022--12- 04."},{"key":"e_1_2_1_14_1","doi-asserted-by":"crossref","unstructured":"J. Daemen S. Hoffert S. Mella M. Peeters G. Van Assche and R. Van Keer Xoodyak a lightweight cryptographic scheme \" NIST 05 2021 J. Daemen S. Hoffert S. Mella M. Peeters G. Van Assche and R. Van Keer Xoodyak a lightweight cryptographic scheme \" NIST 05 2021","DOI":"10.46586\/tosc.v2020.iS1.60-87"}],"container-title":["ACM SIGAda Ada Letters"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3631483.3631495","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3631483.3631495","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:35:48Z","timestamp":1750178148000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3631483.3631495"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,10,30]]},"references-count":14,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2023,10,30]]}},"alternative-id":["10.1145\/3631483.3631495"],"URL":"https:\/\/doi.org\/10.1145\/3631483.3631495","relation":{},"ISSN":["1094-3641"],"issn-type":[{"type":"print","value":"1094-3641"}],"subject":[],"published":{"date-parts":[[2023,10,30]]},"assertion":[{"value":"2023-10-31","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}