Abstract:
Aimed at the problems that Internet of Things (IoT) software is vulnerable to attacks, the deployment cost of existing attestation schemes is high, and only control flow hijacking attacks and static attacks can be independently detected, the integrity attestation of IoT software based on super SIM card is studied. By using the Super SIM card to provide lightweight trust root and secure encryption for Internet of Things devices, and on the basis of the BDFCFA to achieve the control flow of software and static binary code integrity measurement. The analysis shows that the communication bandwidth consumption of the proposed method is 172 bytes, which can resist forgery attacks, replay attacks, man-in-the-middle attacks and known key attacks, and can simultaneously detect control flow hijacking attacks and static attacks.