Evaluating tool support for embedded operating system security: an experience feedback

Embedded systems are more and more connected to a variety of networks, which increases their attack surface. At the same time, more and more objects are augmented with embedded systems, which increases the potential impact of attacks. Cybersecurity must therefore be taken into account while designing and developing embedded software systems. While there are multiple complementary facets to the security of such systems, we focus on embedded operating system security, which is critical to build secure applications. In order to evaluate the applicability of the many available cybersecurity techniques and tools, we need to define a relevant case study. Given that a system's inputs are especially vulnerable, we have specified a fictive device driver, which we have both modeled in UML and implemented in C. We report here on the initial application of a couple of techniques to analyse the security of this device driver at the model and code levels.