国科大密码学院最新成果被IEEESECON(CCF-B)接收

admin 2026-07-06 05:04:54 网络安全文章 来源:ZONE.CI 全球网 0 阅读模式

文章总结: 国科大密码学院王跃武研究员团队在IEEESECON2026发表论文《FBRoT:TransformingFlashMemoryintoRootofTrustforIoTTerminals》,提出利用NAND闪存FTL计算能力构建物联网终端信任根(RoT)的FBRoT方案。该方案无需专用安全硬件,通过复用闪存固有计算资源实现安全功能隔离,并设计可更新RoT机制支持多租户场景,评估表明其在资源受限设备上具有可行性。 综合评分: 87 文章分类: 物联网安全,应用安全,终端安全,嵌入式安全


cover_image

国科大密码学院最新成果被IEEE SECON(CCF-B)接收

信息网络安全杂志

2026年7月2日 12:00 上海

在小说阅读器读本章

去阅读

国科大密码学院王跃武研究员指导博士生史昊天,在22nd Annual IEEE International Conference on Sensing, Communication, and Networking(IEEE SECON)发表了题为“FBRoT: Transforming Flash Memory into Root of Trust for IoT Terminals”的研究论文。该研究聚焦于利用通用的闪存存储器,为缺乏专用安全硬件的物联网终端提供一个可靠的信任根。本次会议于2026年6月3日至5日于意大利比萨举行,研究成果在会议上进行了报告。

会场照片

AbstractWith the popularity of IoT applications, their security has become a focus of academic and industrial attention. Root of trust (RoT) may ensure that only the correct image can be loaded onto to to mitigate the risk of malicious code intrusion. However, existing RoT solutions for the IoT terminals usually require the introduction of additional specific hardware. This does not meet the stringent size, cost, and power requirements of IoT terminal. In addition, some IoT terminals may be used for leasing, which requires their RoT to be able to be updated by the tenant. Existing RoT does not address the issue well. Therefore, this paper proposes an approach to build a RoT for IoT terminals using flash memory, named FBRoT. FBRoT implements the RoT security functions based on the computing power of NAND flash FTL (Flash translation layer). NAND flash is a versatile component for IoT terminals and usually used to store system image. Flash read and write operations for image loading must be performed by the FTL. So, the security functions of RoT cannot be bypassed easily. As a compute unit independent of the host device, FBRoT may isolate the potential malicious attacks from the host effectively. Since the implementation is based on reusing flash’s inherent computing power, FBRoT does not need to introduce specialized security hardware. We have also designed a secure RoT update mechanism for FBRoT, which may make different IoT terminal tenants to build their own proprietary trust chains. Evaluation of the FBRoT prototype system shows that FBRoT incurs reasonable overhead, making it a practical security solution for resource-constrained IoT terminals.

论文信息Haotian Shi, Siyuan Ma, Yuewu Wang, Lingguang Lei, Shijie Jia, Jiwu Jing.: “FBRoT: transforming flash memory into root of trust for IoT terminals,” in 22nd Annual IEEE International Conference on Sensing, Communication, and Networking (SECON). IEEE, 2026.

来源:中国科学院大学密码学院

信息网络安全

《信息网络安全》创刊于2001年,是由公安部主管,公安部第三研究所、中国计算机学会主办,面向国内外公开发行的国内首批信息安全类期刊之一,于2015年成为中国科技核心期刊,2017年成为中国科学引文数据库来源期刊,2018年成为中文核心期刊,2022年入选CCF计算领域高质量科技期刊分级目录。

中文核心期刊

中国科技核心期刊

中国科学引文数据库来源期刊

CCF计算领域高质量科技期刊

我们在不断努力和完善中,期待您的关注和支持!


免责声明:

本文所载程序、技术方法仅面向合法合规的安全研究与教学场景,旨在提升网络安全防护能力,具有明确的技术研究属性。

任何单位或个人未经授权,将本文内容用于攻击、破坏等非法用途的,由此引发的全部法律责任、民事赔偿及连带责任,均由行为人独立承担,本站不承担任何连带责任。

本站内容均为技术交流与知识分享目的发布,若存在版权侵权或其他异议,请通过邮件联系处理,具体联系方式可点击页面上方的联系我

本文转载自:信息网络安全杂志 《国科大密码学院最新成果被IEEE SECON(CCF-B)接收》

评论:0   参与:  0