3 research outputs found
Space Odyssey: An Experimental Software Security Analysis of Satellites
Satellites are an essential aspect of our modern society and have contributed significantly to the way we live today, most notable through modern telecommunications, global positioning, and Earth observation. In recent years, and especially in the wake of the New Space Era, the number of satellite deployments has seen explosive growth. Despite its critical importance, little academic research has been con- ducted on satellite security and, in particular, on the security of onboard firmware. This lack likely stems from by now outdated assumptions on achieving security by obscurity, effectively preventing meaningful research on satellite firmware.
In this paper, we first provide a taxonomy of threats against satellite firmware. We then conduct an experimental security analysis of three real-world satellite firmware images. We base our analysis on a set of real-world attacker models and find several security-critical vulnerabilities in all analyzed firmware images. The results of our experimental security assessment show that modern in-orbit satellites suffer from different software security vulnerabilities and often a lack of proper access protection mechanisms. They also underline the need to overcome prevailing but obsolete assumptions. To substantiate our observations, we also performed a survey of 19 professional satellite developers to obtain a comprehensive picture of the satellite security landscape
Memento - energy-aware memory placement in operating systems
Today’s availability of new memory technologies requires radical re-thinking of memory management in general-purpose operating systems. Main-memory technologies (e.g. NVM), completely new cell types (e.g. PCRAM), and coherent interconnects (e.g. CXL) challenge existing programming and system abstractions. At the same time, memory subsystems received much less attention from energy efficiency efforts, compared to compute resources. We therefore need new interfaces at operating system level that not only communicate functional and non-functional memory properties to application developers, but also take energy efficiency into account.
We propose Memento, a new concept for efficient memory management at the operating system level. Memento addresses the shortcomings of the current state-of-the-art with methods for analysing program code at development time, its operational characteristics at runtime, along with characteristics of memory resources at system setup time