I wrote a technical article on embedded systems and IoT security to Uusiteknologia.fi magazine:
Designing modern electronics+ information security
With the latest smart electronics and embedded microprocessors, devices connected to the network can be implemented even better, but even better care must be taken of their data security and protections.
This Designing modern electronics article gives information for the information security protection of modern electronics. Embedded systems are prone to various information security risks, which in the worst case can cause serious consequences for both users and the environment.
That is why information security should be taken into account from the outset, from the design phase of the device or system to the maintenance phase and decommissioning at the end of the solution’s life cycle.
An insecure Internet of Things can pose a significant risk to the entire digital operating environment. And since the Internet is already ubiquitous, every IoT device is vulnerable to attack.
Although the goal should always be to achieve sustainable security, information security operations must be functional already when the product leaves the factory and must be maintained with software updates.
Designers of embedded systems must adopt a security-first approach to ensure that the systems they design are protected from security risks. Therefore, network security, software security and physical security are important in IoT devices.
This article has provided a basic understanding of information security in embedded systems and provides a guide for designers to create reliable and secure systems that are safe for both users and the environment.
Here you can my article in Finnish:
Nykyelektroniikan suunnittelukoulu Plus, osa 5: Sulautettujen ja IoT-ratkaisujen tietoturva
https://www.uusiteknologia.fi/2023/11/08/nykyelektroniikan-suunnittelukoulu-plus-osa-5-sulautettujen-ja-iotn-tietoturva/
If you want to get idea of the article content in English, try Google translation of the article.
56 Comments
Tomi Engdahl says:
Update devices remotely with this open source tool
Handle all your complete device updates, including firmware and bootloaders, over the air with UpdateHub Community Edition.
https://opensource.com/article/20/9/update-remote-devices-updatehub
Tomi Engdahl says:
https://www.redhat.com/en/blog/linux-security-aide
Tomi Engdahl says:
https://www.reddit.com/r/linuxquestions/comments/1bixls9/does_linux_have_any_mechanisms_for_verifying/
Tomi Engdahl says:
https://exeon.com/knowledge/cvss/?utm_term=cvss%20vulnerability&utm_campaign=R+%7C+CVSS+%7C+EN+%7C+Search&utm_source=adwords&utm_medium=ppc&hsa_acc=5926591164&hsa_cam=21422420589&hsa_grp=164841426435&hsa_ad=704498221670&hsa_src=g&hsa_tgt=kwd-808277578273&hsa_kw=cvss%20vulnerability&hsa_mt=p&hsa_net=adwords&hsa_ver=3&gad_source=1&gad_campaignid=21422420589&gclid=EAIaIQobChMI5vao5_7KjwMVbBiiAx0j5TSbEAAYAiAAEgJTwPD_BwE
Tomi Engdahl says:
https://phoenixnap.com/kb/nmap-scan-open-ports
Tomi Engdahl says:
https://veracrypt.io/en/Downloads.html