| With the development of home automation,wearable devices and IoT?Internet of Things?,embedded devices are becoming more and more prevailing.Many security problems are encoutered while various embedded devices benefit users' daily life,such as privacy leakage,vulnerability,backdoor,etc.It's a valuable work to analyse and assess the security of embedded devices.Comparing with common desktop softwares,to analyse embedded devices needs to encounter much more difficulites.Many existing analysis tools only work on i386/x8664 instruction set,but most embedded devices are built on a different ISA?MIPS,ARM,AVR?chip,so those tools do not adapt to embedded devices.In addition,an analyst has no ability to debug the softwares in a device.most dynamic analysis techniques are not able to applied to the analysis of embedded devices.For those reasons,embedded devices analysing becomes a laborious work.By focusing resarch on the security of softwares in embedded devices,this paper studies prevours iOS and brings out innovative methods and technology for embeded devices analysis.Its main contrbution includes:1.Design and implement a new process-level emulator?Current for MIPS?which has a better performance comparing with existing solution.2.Present a novel assessment method focusing on vendor customized code,provide details during the analysis process.3.Perform a pratical analysis on five devices in Chinese market and find critical security flows in each devices.The details of those security flows are also provided. |
PDF Full Text Request