In this paper, we discuss several techniques which we used to significantly increase the efficiency of reverse-engineering the firmware of an instrument cluster. Using this example target, we demonstrate it is fairly easy to implement an emulator which is capable of emulating the target's firmware entirely without the need for the original hardware, including many essential components of the target such as the EEPROM, display controller, and CAN bus.
View the slides below or download them in PDF. Scroll down to request the whitepaper.
At Riscure we have observed many severe security issues exploited by hackers even in previously certified solutions. In recent years, certification, which aims to minimize security risks, has become more important, especially in the mobile application industry....
Cryptographic side channels are well-known and understood in the industry. There are also many countermeasures against side channels to reduce the leakage risk. However, many implementations in the field are leaky because of the combination of security experts and the...
For more than 20 years Riscure has been helping chip and device vendors to improve the security of their products. We have observed the ever-changing security landscape, adjusted to the evolving attacker profile, witnessed and reacted to the appearance of well-organized adversaries.