English 日本語
产品 >
应用 >
设计资源 >
支持 >
订购产品 >
关于我们 >
Maxim Integrated
设计资源
Maxim博客
Fish Tanks Don’t Need Security—Unless They’re Part of the IoT
DIY Engineering Projects for Your Valentine
PUF Technology Protects Against Invasive Attacks
快速、高精度电池管理系统助力更安全的电动汽车
How You Can Help Bring 20.8 Billion Connected Things Into the World
参考设计不仅仅是IC,而是完备的系统
工业4.0来势汹涌,“模拟整合”是主要受益者之一
Putting the power of Industry 4.0 in your Pocket
Battery fuel gauge ICs do more
Reference Designs: Game Changers for Complex Projects
为什么黑客急不可耐地想进入您的汽车
您的家居可能越来越智能——但防止黑客的安全性又如何呢?
实现智能电网故障的快速、高精度检测
Template
隔离电源参考设计
多通道、通用模拟输入 参考设计
Applying Peak Current Mode Control for High Performance in Switching Regulators
iButton背后的故事
Meeting Big Demands for Power in Small Devices
快速了解如何利用NFC保护您的系统
Flexound Systems Brings Immersive Dimension to Music
Better Battery Runtimes Without Characterization
Why Not Design a Smaller PLC?
Q&A: Maxim's Randall Wollschlager on Designing the Future Car
Simplify Power Circuit Design with Simulation
How Medical Wearables Enhance Quality of Life
IO-Link Handbook Presents Primer on Designing Sensors and Masters
ELIV 2017: Learn Ways to Design Safer, Smarter Cars
Infomart Creates Tiny Power-over-Ethernet Devices
Advancing Safety and Infotainment for Cars of Today and the Future
How PA Linearization Solves Key Challenge for Remote PHY Fiber Nodes
更安全、更智能汽车的必经之路
Many Technologies Are Vying for Your IoT Wide Area Network Design
Are Your IoT Devices Immune to Cyberattacks?
Machine Learning Club Drives Data Science Demand
Designing Tiny, Connected Products? Don’t Miss this Webinar
How Can We Create One Trillion Connected Devices?
Modular System Speeds Up IoT Design Cycle
Keep Designs Cool with a Tiny, Low-Power Temperature Sensor
Circuit Protection You Might Not Have Thought About
你无法盗取一个并不存在的密钥
See Demos of Turnkey Security ICs at TRUSTECH
Synchronous Switching Regulators: Talk Time or Standby Time?
5 Ways Solar Power Usage Will Change By 2037
What Kind of World Will One Trillion Connected Devices Produce?
Can We Fix the Cybersecurity Mess?
Three Great Personal Gadgets for Engineers
Secure TLS in Connected Devices with a Companion Security IC
Are There One Trillion Things to Connect?
Maxim to Demo High-Speed SerDes Links and More at CES 2018
Achieve Precision Control of Vibration for Wearables
Secure Microcontrollers Safe from Spectre and Meltdown Flaws
How to Stop an Invasive Attack on Your Design
Smaller, Lower Power 4-20mA Sensor Transmitters for Industrial Equipment
利用安全电量计防止假冒电池
如何通过电池电量计建立客户信任
Sustaining the IoT—What Will This Take?
How a Software Isolation Solution Protects IoT Devices
AM Radio in Your Electric Vehicle? Not Always
Wirelessly Charge Your Next Design
数字健康技术如何改善预防性保健护理
A Look at the Latest Battery Technology from Tesla
需要更紧凑封装的即插即用电源?您找对地方了
Powering Motor Encoders and Resolvers
Flow Battery Technologies for Utility-Scale Systems
High-Speed Serial Links for ADAS and Infotainment
Got an IoT Design Idea? Enter Our Contest
谁是WiFi设备的背后英雄
遇见“达尔文”,为IoT而生的全新微控制器“物种”
How Security ICs Address New Medical Device Regulations
On-Demand Webinar: Hardware Security with PUF Technology
The Beauty of Precision Op Amps
Kid Inventors Showcase STEM Skills at California Invention Convention
Don’t Worry – Isolate All Those Digital Signals
Putting Intelligence in the IoT
Got a Wearable Health Design Idea? Here’s How to Make It Accurate
How Can We Power Our Invisible Intelligence?
What Can GPS Do for Your Design?
Keeping the IoT Safe from Hackers
Choosing the Best Type of Temperature Sensor
Reinforced Digital Isolator Ensures Safety in Industrial Environments
Who Had the Winning Project in Our MAX32620FTHR Design Contest?
4 Ways to Extend Runtime of Small, Battery-Powered Electronics
Accurate, Wrist-Based Heart-Rate Monitoring—Six Months Faster
Smaller, Smarter, and More Powerful ICs—It’s All at electronica 2018
Empowering Secure PIN-on-Glass Payments at TRUSTECH 2018
Engineering Intern Creates Heat-Sensing Robot with LoRa Technology
So Many Smart Devices, So Many Security Vulnerabilities
An Insider's View of Analog Artistry at electronica 2018
One Way to Replace Power Rail Clusters in Small Electronic Devices
Engineers Had Better Be Careful with Algorithms and AI
Get Inspired to Think Big and Design Small
How LED Backlight Drivers Enable Bigger, Higher Resolution Automotive Displays
How IoT Sensors Help Ensure Freshness and Quality of Perishables
Fish Tanks Don’t Need Security—Unless They’re Part of the IoT
Digital Instrument Clusters: Why Functional Safety is Important
Digital Input Design
抢占电动滑板车、电动自行车及其他位置跟踪IoT的电源设计挑战先机
See How Click Boards Make It Quick to Evaluate Real Time Clock ICs
Multichannel ADC Accuracy for Accurate Sensing
What’s in Photoplethysmography Data? A Look at the Interaction Between Sensor Performance and Algorithms
Charging Your Car’s Battery – in 1898
Prioritizing Customer Focus to Save Lives

Fish Tanks Don’t Need Security—Unless They’re Part of the IoT

February 28, 2019

Christine Young  By: Christine Young
 Blogger, Maxim Integrated 


Normally, you wouldn’t expect that a fish tank would need to be secured from hackers. But what if that fish tank is a smart one, with its temperature and lighting controlled by an internet of things (IoT) system? In this case, a hacked fish tank presents an avenue into the larger network…and troves of sensitive data. This is what happened to a Las Vegas casino, whose smart fish tank was not protected by a firewall, giving the bad guys access to its database of high-roller clients.

“Really, the point of kicking this off this way is, the IoT is pervasive. The connectivity associated with that is, a lot of products are vulnerable. We need to think about security,” said Scott Jones, managing director of embedded security at Maxim, during his recent webinar on the topic. During his hour-long session, “Why Does a Fish Tank Need Security?,” Jones emphasized the importance of designing with security in mind, explained how the SHA-3 hash algorithm and physically unclonable function (PUF) technology work, and introduced a secure authenticator that integrates both technologies.

The hacked fish tank presents a captivating example, and there are plenty of connected things from the embedded world that have similar vulnerabilities. Jones cited medical tool developers who have had their products harvested from medical waste and eventually put back into the supply chain, as well as fake sensors found in industrial control and automation systems. High-value products are targets for malware, counterfeiting, and unauthorized use—and their perceived value often lies in the underlying data.

Industrial sensorsFigure 1. Sensors in industrial automation environments, such as this bottle packaging production line, can be cloned if left unsecured.

If you’re unsure about whether you need to protect your design, Jones said, ask yourself these questions:

  • Do I have an existing problem that could be solved with security?
  • Could my system be a target for counterfeiting or improper use?
  • For safety and quality, is it imperative that my sensors, tools, and modules be genuine?

While design security comes in many flavors, Jones advocated for hardware-based security—such as via secure authenticators—as the most robust and cost-effective option. Secure authenticators can be used for intellectual property (IP) protection, device authentication, feature setting, use management, data/firmware integrity, and message authentication/integrity. These devices are typically designed to provide symmetric and asymmetric algorithms, bi-directional authentication, and secure system data storage, use counting, memory settings, and general-purpose I/O (GPIO). You can use a secure authenticator for a number of purposes, including:

  • Authenticating an accessory before usage
  • Securely updating data in an accessory authenticator
  • Providing authenticated read of accessory operating parameters
  • Securely counting the number of accessory uses
  • Expiring additional uses of the accessory
  • Establishing a cryptographic key for separate host/accessory encrypted communication

Like Fingerprints for Data
Why should you care about SHA-3? Developed by a renowned European cryptographic team and based on the KECCAK cryptographic function, SHA-3 was adopted as the latest Secure Hash Algorithm in 2015 after a public competition and vetting process by the National Institute of Standards and Technology (NIST). “If you think about a hash algorithm,” said Jones, “they’re really like a function that can give us a digital fingerprint of data. You can take any arbitrarily sized data algorithm, push it through a SHA algorithm, and get a fixed-length output from that process.”

He continued, “The beauty of SHA-3 is, it’s very efficient in terms of hardware implementation and even on the software side.” This makes the algorithm ideal for symmetric key-based message authentication codes (MACs). With MACs, a short piece of information is used to authenticate a message and confirm that it originated from the stated sender, such as a sensor or a tool. This process ensures that the message can be trusted before the desired action is allowed to take place.

As Jones notes, SHA-3 provides a secure one-way function. You can’t reconstruct data from the hash, or change data without changing the hash. You also won’t find any other data with the same hash, or any two sets of data with the same hash. To understand how SHA-3 works, consider an end application that, at a system level, consists of a slave accessory designed with a SHA-3 authentication IC and a host controller with a SHA-3 coprocessor or microcontroller, as shown in Figure 2. The slave accessory will have a unique secret, while the host controller will have a system secret. For authentication functions, the host needs to first securely compute the unique secret that is stored in the slave IC. To do so the host requests the ROM ID from the slave and inputs it, along with its own securely stored system secret and some compute data, into its own SHA-3 engine. The engine then computes a SHA-3 hash-based MAC (HMAC) that is equal to the unique secret stored in the authentication IC. After securely deriving the unique secret in the slave IC, the host controller can perform various bi-direction authentication functions with the authentication IC. One example would be a challenge-and response authentication sequence to prove that the accessory is genuine. In this case, the host requests and receives a ROM ID from the slave. The host also produces a random challenge and sends it to the slave accessory. The slave accessory then inputs its unique ID, unique secret, and the challenge into its SHA-3 engine to compute a SHA-3 HMAC, which is then returned to the host. At the same time, the host has computed its SHA-3 HMAC with the unique slave secret, the challenge, and the slave’s ROM ID. If the HMACs are equal, then the slave accessory is verified to be authentic.

Fundamental elements in a SHA-3 authentication modelFigure 2. Fundamental elements in a SHA-3 authentication model.

You Can’t Steal a Key that Isn’t There
These days, even security solutions are under relentless and sophisticated attack. There are non-invasive methods, such as side-channel attacks. There are also invasive attacks, including microprobing, reverse-engineering, and the use of focused ion beam to make modifications in the silicon. PUF technology is designed to protect against these types of attacks. Maxim’s PUF implementation is in its ChipDNA technology, which utilizes random electrical characteristics within silicon to produce a key. “The beauty of this is, any interaction at all, any attempt to probe or expose the silicon, causes these very sensitive electrical characteristics to change,” said Jones, explaining that this renders the PUF to be useless. The key is generated and used in secure logic only when required by a cryptographic operation and it is erased when no longer needed.

Together, SHA-3 and PUF technology can be a formidable pair—one that’s available in one of Maxim’s newest secure authenticators, the DS28E50. In addition to PUF protection and FIPS202-compliant, SHA3-256-based challenge/response bi-directional authentication, the DS28E50 also features:

  • NIST SP 800-90B TRNG with command to output RND
  • 2kb E2 array for user memory and SHA-3 secret
  • Decrement-only counter with authenticated read
  • Unique factory-programmed, read-only serial number (ROM ID)

Wrapping up his session, Jones answered some interesting questions. One attendee wanted to know whether SHA-2 remains viable. Jones pointed out that there are no known cryptographic vulnerabilities within SHA-2 and that Maxim continues to use this algorithm in some of its products. “We try to stay on the security treadmill. [SHA-3] is the next evolution in hash algorithms and, therefore, a key reason we have migrated to it,” he said.

Another attendee wanted to know whether PUF circuits come under attack. Said Jones: “I don’t know of a particular entity that is attempting to break the PUF in a malicious sense.” What’s more, a third-party security lab conducted a reverse-engineering study of another PUF-based circuit, the DS28E38, and determined that the authenticator is “highly effective and resistant against physical reverse-engineering attacks.”

Learn More:

Share