Do microcontroller processors like Arm Cortex-M support the TPM’s Dynamic root of trust (similar to e.g. Intel TXT)?

The TPM (Trusted Platform Module) has a feature called dynamic root-of-trust. If i understand correctly a measurement of the current system is taken (to enable attestation) by the CPU and transmitted to the TPM. To make sure that the measu… Continue reading Do microcontroller processors like Arm Cortex-M support the TPM’s Dynamic root of trust (similar to e.g. Intel TXT)?

what are the locations to store symmetric keys on the embedded controller without HSM or certs involvement?

I am trying to find the locations on the embedded devices with micros that don’t support HSM/SHE. What are the ideas/suggestions for storing the symmetric keys? I found solutions that suggest using public/private keys to encrypt this symme… Continue reading what are the locations to store symmetric keys on the embedded controller without HSM or certs involvement?

Is it safe to embed mTLS certificate and private key in IOT device’s executable?

I will be deploying IOT devices in a consumer’s network that authenticate with a web based API using mTLS. Is it safe to embed the certificate and private key in the IOT applications binary at compile time and distribute it like this? If t… Continue reading Is it safe to embed mTLS certificate and private key in IOT device’s executable?

Is there a way to scan a pdf to ensure it doesn’t contain anything that could be a virus?

The answers to Can a PDF file contain a virus? show that clearly it can!
Sometimes we can be quite sure a certain pdf should not need to do anything sophisticated – for example a book in pdf form – so we wouldn’t expect them to contain emb… Continue reading Is there a way to scan a pdf to ensure it doesn’t contain anything that could be a virus?

When connecting an Arduino Uno to the internet (ethernet) what are some attacks it’s susceptible to and how can I secure against them?

I am connecting an Arduino Uno to the internet via ethernet (using the ethernet shield v2) and querying NTP time. Making requests to a NTP server is the only internet related thing it does. You can use the ethernet shield as an SD card to … Continue reading When connecting an Arduino Uno to the internet (ethernet) what are some attacks it’s susceptible to and how can I secure against them?

After EOL, can safety-critical systems be secured when connected to internet-connected components? [Automotive]

NOTE: This was originally asked on the main StackOverflow site, but now moved here because of the security nature of the question.
Since internet-connected Infotainment Systems are now connected with other components of a car… Is it pos… Continue reading After EOL, can safety-critical systems be secured when connected to internet-connected components? [Automotive]