{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,19]],"date-time":"2026-01-19T13:47:07Z","timestamp":1768830427555,"version":"3.49.0"},"reference-count":28,"publisher":"MDPI AG","issue":"10","license":[{"start":{"date-parts":[[2023,5,16]],"date-time":"2023-05-16T00:00:00Z","timestamp":1684195200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"European Union\u2019s Horizon 2020 research and innovation programme","award":["857159"],"award-info":[{"award-number":["857159"]}]},{"name":"European Union\u2019s Horizon 2020 research and innovation programme","award":["TALENT-BELIEF (PID2020-116417RB-C44)"],"award-info":[{"award-number":["TALENT-BELIEF (PID2020-116417RB-C44)"]}]},{"name":"European Union\u2019s Horizon 2020 research and innovation programme","award":["MIRATAR TED2021-132149B-C41"],"award-info":[{"award-number":["MIRATAR TED2021-132149B-C41"]}]},{"name":"MCIN\/AEI\/10.13039\/ 501100011033","award":["857159"],"award-info":[{"award-number":["857159"]}]},{"name":"MCIN\/AEI\/10.13039\/ 501100011033","award":["TALENT-BELIEF (PID2020-116417RB-C44)"],"award-info":[{"award-number":["TALENT-BELIEF (PID2020-116417RB-C44)"]}]},{"name":"MCIN\/AEI\/10.13039\/ 501100011033","award":["MIRATAR TED2021-132149B-C41"],"award-info":[{"award-number":["MIRATAR TED2021-132149B-C41"]}]},{"name":"MCIN\/AEI\/10.13039\/501100011033","award":["857159"],"award-info":[{"award-number":["857159"]}]},{"name":"MCIN\/AEI\/10.13039\/501100011033","award":["TALENT-BELIEF (PID2020-116417RB-C44)"],"award-info":[{"award-number":["TALENT-BELIEF (PID2020-116417RB-C44)"]}]},{"name":"MCIN\/AEI\/10.13039\/501100011033","award":["MIRATAR TED2021-132149B-C41"],"award-info":[{"award-number":["MIRATAR TED2021-132149B-C41"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>Internet of Things cybersecurity is gaining attention as the number of devices installed in IoT environments is exponentially increasing while the number of attacks successfully addressed to these devices are also proliferating. Security concerns have, however, been mainly addressed to service availability and information integrity and confidentiality. Code integrity, on the other hand, is not receiving proper attention, mainly because of the limited resources of these devices, thus preventing the implementation of advanced protection mechanisms. This situation calls for further research on how traditional mechanisms for code integrity can be adapted to IoT devices. This work presents a mechanism for code integrity in IoT devices based on a virtual-machine approach. A proof-of-concept virtual machine is presented, specially designed for providing code integrity during firmware updates. The proposed approach has been experimentally validated in terms of resource consumption among the most-widespread micro-controller units. The obtained results demonstrate the feasibility of this robust mechanism for code integrity.<\/jats:p>","DOI":"10.3390\/s23104794","type":"journal-article","created":{"date-parts":[[2023,5,17]],"date-time":"2023-05-17T01:58:06Z","timestamp":1684288686000},"page":"4794","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Code Integrity and Confidentiality: An Active Data Approach for Active and Healthy Ageing"],"prefix":"10.3390","volume":"23","author":[{"ORCID":"https:\/\/orcid.org\/0009-0006-6513-3498","authenticated-orcid":false,"given":"Egor","family":"Litvinov","sequence":"first","affiliation":[{"name":"Nokia Corporation, 90620 Oulu, Finland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3273-8347","authenticated-orcid":false,"given":"Henry","family":"Llumiguano","sequence":"additional","affiliation":[{"name":"Department of Technology and Information Systems, University of Castilla-La Mancha, 13001 Ciudad Real, Spain"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6132-1199","authenticated-orcid":false,"given":"Maria J.","family":"Santofimia","sequence":"additional","affiliation":[{"name":"Department of Technology and Information Systems, University of Castilla-La Mancha, 13001 Ciudad Real, Spain"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9996-8008","authenticated-orcid":false,"given":"Xavier","family":"del Toro","sequence":"additional","affiliation":[{"name":"Department of Technology and Information Systems, University of Castilla-La Mancha, 13001 Ciudad Real, Spain"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0773-5846","authenticated-orcid":false,"given":"Felix J.","family":"Villanueva","sequence":"additional","affiliation":[{"name":"Department of Technology and Information Systems, University of Castilla-La Mancha, 13001 Ciudad Real, Spain"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3936-6291","authenticated-orcid":false,"given":"Pedro","family":"Rocha","sequence":"additional","affiliation":[{"name":"CINTESIS@RISE, Department of Behavioural Sciences, Abel Salazar Biomedical Sciences Institute (ICBAS), University of Porto, 4099-002 Porto, Portugal"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2023,5,16]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"1550147718794616","DOI":"10.1177\/1550147718794616","article-title":"Enabling smart behavior through automatic service composition for Internet of Things\u2013based Smart Homes","volume":"14","author":"Santofimia","year":"2018","journal-title":"Int. J. Distrib. Sens. Netw."},{"key":"ref_2","unstructured":"Hilton, S. (2023, March 12). Dyn Analysis Summary of Friday October 21 Attack. Dyn Blog. Available online: https:\/\/dyn.com\/blog\/dyn-analysis-summary-of-friday-october-21-attack."},{"key":"ref_3","doi-asserted-by":"crossref","first-page":"1284","DOI":"10.1016\/j.jacc.2018.01.023","article-title":"Cybersecurity for cardiac implantable electronic devices: What should you know?","volume":"71","author":"Baranchuk","year":"2018","journal-title":"J. Am. Coll. Cardiol."},{"key":"ref_4","unstructured":"Takahashi, D. (2017). Insulin Pump Hacker Says Vendor Medtronic is Ignoring Security Risk, Venture Beat. Available online: https:\/\/venturebeat.com\/business\/insulin-pump-hacker-says-vendor-medtronic-is-ignoring-security-risk\/."},{"key":"ref_5","unstructured":"Rockoff, J. (2016). J&J warned insulin pump vulnerable to cyber hacking. Wall Str. J., Available online: https:\/\/www.wsj.com\/articles\/j-j-warns-insulin-pump-vulnerable-to-cyber-hacking-1475610989."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"476","DOI":"10.1016\/j.tcm.2018.11.011","article-title":"Are implanted electronic devices hackable?","volume":"29","author":"Alexander","year":"2019","journal-title":"Trends Cardiovasc. Med."},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"105528","DOI":"10.1016\/j.clsr.2021.105528","article-title":"Cybersecurity, safety and robots: Strengthening the link between cybersecurity and safety in the context of care robots","volume":"41","author":"Mahler","year":"2021","journal-title":"Comput. Law Secur. Rev."},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Othmane, L.B., and Lilien, L. (2009, January 25\u201327). Protecting Privacy of Sensitive Data Dissemination Using Active Bundles. Proceedings of the 2009 World Congress on Privacy, Security, Trust and the Management of e-Business, St. John\u2019s, NL, Canada.","DOI":"10.1109\/CONGRESS.2009.30"},{"key":"ref_9","doi-asserted-by":"crossref","unstructured":"F\u00e6r\u00f8y, F.L., Yamin, M.M., Shukla, A., and Katt, B. (2023). Automatic Verification and Execution of Cyber Attack on IoT Devices. Sensors, 23.","DOI":"10.3390\/s23020733"},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Khan, M.A., Din, I.U., Majali, T., and Kim, B.S. (2022). A Survey of Authentication in Internet of Things-Enabled Healthcare Systems. Sensors, 22.","DOI":"10.3390\/s22239089"},{"key":"ref_11","unstructured":"Graff, M., and Van Wyk, K.R. (2003). Secure Coding: Principles and Practices, O\u2019Reilly Media, Inc."},{"key":"ref_12","doi-asserted-by":"crossref","unstructured":"Anderson, R. (2020). Security Engineering: A Guide to Building Dependable Distributed Systems, John Wiley & Sons.","DOI":"10.1002\/9781119644682"},{"key":"ref_13","first-page":"2019","article-title":"Owasp secure coding practices-quick reference guide","volume":"20","author":"Turpin","year":"2010","journal-title":"Accessed Jun"},{"key":"ref_14","unstructured":"Wheeler, D.A. (2011). Secure Programming for Linux and Unix HOWTO, Free Software Foundation."},{"key":"ref_15","first-page":"17","article-title":"Secure coding standards","volume":"13","author":"Seacord","year":"2006","journal-title":"Proc. Static Anal. Summit Nist Spec. Publ."},{"key":"ref_16","doi-asserted-by":"crossref","unstructured":"Proen\u00e7a, D., and Borbinha, J. (2018, January 18\u201320). Information security management systems-a maturity model based on ISO\/IEC 27001. Proceedings of the Business Information Systems: 21st International Conference, BIS 2018, Berlin, Germany.","DOI":"10.1007\/978-3-319-93931-5_8"},{"key":"ref_17","unstructured":"Williams, B.L. (2016). Information Security Policy Development for Compliance: ISO\/IEC 27001, NIST SP 800-53, HIPAA Standard, PCI DSS V2. 0, and AUP V5. 0, CRC Press."},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"100069","DOI":"10.1016\/j.iot.2019.100069","article-title":"Fog-based local and remote policy enforcement for preserving data privacy in the Internet of Things","volume":"7","author":"Carr","year":"2019","journal-title":"Internet Things"},{"key":"ref_19","doi-asserted-by":"crossref","unstructured":"Bonomi, F., Milito, R., Zhu, J., and Addepalli, S. (2012, January 17). Fog Computing and Its Role in the Internet of Things. Proceedings of the MCC \u201912, First Edition of the MCC Workshop on Mobile Cloud Computing, Helsinki, Finland.","DOI":"10.1145\/2342509.2342513"},{"key":"ref_20","doi-asserted-by":"crossref","first-page":"18","DOI":"10.1109\/MCOM.2017.7901470","article-title":"Clarifying Fog Computing and Networking: 10 Questions and Answers","volume":"55","author":"Chiang","year":"2017","journal-title":"IEEE Commun. Mag."},{"key":"ref_21","unstructured":"Wopata, M. (2023, March 12). IoT Edge Computing\u2014What It Is and How It Is Becoming More Intelligent. Available online: https:\/\/iot-analytics.com\/iot-edge-computing-what-it-is-and-how-it-is-becoming-more-intelligent\/."},{"key":"ref_22","unstructured":"Marshall, P. (2021). State of the Edge 2021: A Market and Ecosystem Report for Edge Computing, The Linux Foundation."},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"1608","DOI":"10.1109\/JPROC.2019.2918437","article-title":"Edge Computing Security: State of the Art and Challenges","volume":"107","author":"Xiao","year":"2019","journal-title":"Proc. IEEE"},{"key":"ref_24","unstructured":"Antonakakis, M., April, T., Bailey, M., Bernhard, M., Bursztein, E., Cochran, J., Durumeric, Z., Halderman, J.A., Invernizzi, L., and Kallitsis, M. (2017, January 16\u201318). Understanding the Mirai Botnet. Proceedings of the SEC\u201917, 26th USENIX Conference on Security Symposium, Vancouver, BC, Canada."},{"key":"ref_25","doi-asserted-by":"crossref","unstructured":"O\u2019Donnell, J.T., Hall, C., and Monro, S. (2013, January 26\u201327). Active data structures on GPGPUs. Proceedings of the Euro-Par 2013: Parallel Processing Workshops: BigDataCloud, DIHC, FedICI, HeteroPar, HiBB, LSDVE, MHPC, OMHI, PADABS, PROPER, Resilience, ROME, and UCHPC 2013, Aachen, Germany. Revised Selected Papers 19.","DOI":"10.1007\/978-3-642-54420-0_85"},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"256","DOI":"10.1145\/146628.140382","article-title":"Active messages: A mechanism for integrated communication and computation","volume":"20","author":"Culler","year":"1992","journal-title":"ACM SIGARCH Comput. Archit. News"},{"key":"ref_27","doi-asserted-by":"crossref","first-page":"56","DOI":"10.1016\/j.adhoc.2018.01.008","article-title":"Active data dissemination for mobile sink groups in wireless sensor networks","volume":"72","author":"Lee","year":"2018","journal-title":"Hoc Netw."},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"192","DOI":"10.1016\/j.ins.2020.06.074","article-title":"Detection of stealthy false data injection attacks against networked control systems via Active Data modification","volume":"546","author":"Pang","year":"2021","journal-title":"Inf. Sci."}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/23\/10\/4794\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T19:36:06Z","timestamp":1760124966000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/23\/10\/4794"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,5,16]]},"references-count":28,"journal-issue":{"issue":"10","published-online":{"date-parts":[[2023,5]]}},"alternative-id":["s23104794"],"URL":"https:\/\/doi.org\/10.3390\/s23104794","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,5,16]]}}}