Code Integrity in Embedded Systems
摘要
The exponential growth of embedded systems within supply chains has made it necessary to introduce code verification measures. Embedded systems can acquire data that is sent to immutable registers, such as blockchains. This mechanism provides certified data, but it can be subject to tampering to alter the data before it is entered into the blockchain. It is essential to verify the integrity of the source code with which data is sent to data storage and processing systems. If the source code is compromised, the data itself can be altered, triggering a permanently altered supply chain. This paper proposes a panoramic on the challenge of code verification in resource-constrained environments, focusing on techniques for proving that the software running on the device sending data is not compromised. Below, the document is structured with an introduction to the problem, related work, an analysis of possible attacks on embedded systems, and a possible approach. Finally, conclusions and future works.