#REQUEST.pageInfo.pagedescription#

Site Navigation

COMP9049 - Embedded Security

banner1
Title:Embedded Security
Long Title:Embedded Security
Module Code:COMP9049
 
Credits: 5
NFQ Level:Expert
Field of Study: Computer Science
Valid From: Semester 1 - 2016/17 ( September 2016 )
Module Delivered in 2 programme(s)
Module Coordinator: TIM HORGAN
Module Author: Sean McSweeney
Module Description: In this module the student will learn how to test the security of the embedded systems that form the foundation for the "Internet of Things"
Learning Outcomes
On successful completion of this module the learner will be able to:
LO1 Appraise current practice in embedded security
LO2 Analyse secure software development for embedded systems
LO3 Examine specialized tools for both offensive and defensive embedded security
LO4 Compare hardware solutions for embedded security
Pre-requisite learning
Module Recommendations
This is prior learning (or a practical skill) that is strongly recommended before enrolment in this module. You may enrol in this module if you have not acquired the recommended learning but you will have considerable difficulty in passing (i.e. achieving the learning outcomes of) the module. While the prior learning is expressed as named CIT module(s) it also allows for learning (in another module or modules) which is equivalent to the learning specified in the named module(s).
No recommendations listed
Incompatible Modules
These are modules which have learning outcomes that are too similar to the learning outcomes of this module. You may not earn additional credit for the same learning and therefore you may not enrol in this module if you have successfully completed any modules in the incompatible list.
No incompatible modules listed
Co-requisite Modules
No Co-requisite modules listed
Requirements
This is prior learning (or a practical skill) that is mandatory before enrolment in this module is allowed. You may not enrol on this module if you have not acquired the learning specified in this section.
No requirements listed
Co-requisites
No Co Requisites listed
 

Module Content & Assessment

Indicative Content
Internet of Things system security
Embedded Systems Vulnerabilities & Attacks, Firmware and operating systems analysis, Processors, OpenWrt in Qemu, reverse engineering
Embedded Software Security
Standards, CISQ, Execution Space protection, Data handling, Integrity checking, Dynamics Code Analysis, Software Hardening
Embedded Hardware Security
Hardware hacking, FPGA and CPLD techniques, JTAG, I2C and bus vulnerabilities, Side Channel Attacks, Security Modules, f.ex. SHE, HSM, TrustZone, Binary extraction, secure flashing
Tools
Network mapping for embedded systems, hexdump, binwalk, firmware mod kit, SamuraiSTFU
Assessment Breakdown%
Course Work100.00%
Course Work
Assessment Type Assessment Description Outcome addressed % of total Assessment Date
Written Report This report will assess the student's knowledge in appraising the security vulnerabilities in current embedded software and the mitigation techniques for these vulnerabilities. 2 30.0 Week 6
Essay This essay will determine the student's theoretical knowledge of embedded security, how this affects the software development lifecycle and processes and the current hadware used to mitigate these through assessing the current state of the art.n/a 1,4 40.0 Sem End
Project This project will evaluate the student's mastery assessing an embedded application for security vulnerabilities. This will require the use of advanced tools and techniques such as hexdump and SamuraiSTFU. 3 30.0 Week 12
No End of Module Formal Examination
Reassessment Requirement
Coursework Only
This module is reassessed solely on the basis of re-submitted coursework. There is no repeat written examination.

The institute reserves the right to alter the nature and timings of assessment

 

Module Workload

Workload: Full Time
Workload Type Workload Description Hours Frequency Average Weekly Learner Workload
Lecture Lecture delivering theory underpinning learning outcomes. 2.0 Every Week 2.00
Lab Lab to support learning outcomes. 1.0 Every Week 1.00
Independent & Directed Learning (Non-contact) Independent study. 4.0 Every Week 4.00
Total Hours 7.00
Total Weekly Learner Workload 7.00
Total Weekly Contact Hours 3.00
Workload: Part Time
Workload Type Workload Description Hours Frequency Average Weekly Learner Workload
Lecture Lecture delivering theory underpinning learning outcomes. 2.0 Every Week 2.00
Lab Lab to support learning outcomes. 1.0 Every Week 1.00
Independent & Directed Learning (Non-contact) Independent study. 4.0 Every Week 4.00
Total Hours 7.00
Total Weekly Learner Workload 7.00
Total Weekly Contact Hours 3.00
 

Module Resources

Recommended Book Resources
  • Xiaoyu Ruan 2014, Platform Embedded Security Technology Revealed: Safeguarding the Future of Computing with Intel Embedded Security and Management Engine [ISBN: 143026571X]
  • David Kleidermacher and Mike Kleidermacher 2012, Embedded Systems Security: Practical Methods for Safe and Secure Software and Systems Development, 1 Ed., Newnes [ISBN: 0123868866]
Supplementary Book Resources
  • Samuel Huntley 2015, Embedded Device Security: Pwn the device, 1 Ed., CreateSpace Independent Publishing Platform [ISBN: 1508553300]
Recommended Article/Paper Resources
This module does not have any other resources
 

Module Delivered in

Programme Code Programme Semester Delivery
CR_KINSE_9 Master of Science in Information Security 1 Elective
CR_KINSY_9 Postgraduate Diploma in Science in Information Security 1 Elective

Cork Institute of Technology
Rossa Avenue, Bishopstown, Cork

Tel: 021-4326100     Fax: 021-4545343
Email: help@cit.edu.ie