securing the billions of devices around us - darpa hunt - securing the billi… · securing the...
TRANSCRIPT
![Page 1: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/1.jpg)
Securing the Billions of Devices Around UsDr. Galen Hunt
Distinguished Engineer and Managing Director
Microsoft Azure Sphere
![Page 2: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/2.jpg)
MCU
192Mhz Cortex-M4
256KB SRAM
1MB NOR FLASH
GPIO, I2C, I2S, etc.
RTOS (no kernel)
Radio Analog
2.4 & 5 GHz
Radio Digital
WiFi
![Page 3: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/3.jpg)
MCU (Microcontroller)
low-cost, single chip computer
9 BILLION new MCU devices
built and deployed every year
![Page 4: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/4.jpg)
How do you know if
the compressor in your fridge
needs to be replaced?
The Old Way
Melted ice cream
The New Way
Auto-diagnosis
Connected devices create profoundly better customer experiences.
![Page 5: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/5.jpg)
Opportunity Risk
![Page 6: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/6.jpg)
What happens when you connect
a device to the internet?
“The internet is this cauldron of evil.” Dr. James Mickens, Harvard University
![Page 7: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/7.jpg)
“When smart gadgets spy on you: Your home life is less private than you think”
“Protecting Your Family: The Internet of Things Gives Hackers Creepy New Options”
![Page 8: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/8.jpg)
Mirai Botnet attack
Everyday devices are used to launch an attack that takes down the internet for a day
100k devices
Exploited a well known weakness
No early detection, no remote update
![Page 9: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/9.jpg)
Building a highly-secured device is difficult and costly.
Design and build
a holistic solution
Recognize and mitigate
emerging threats
Distribute and apply
updates on a global scale
You’re only as secure as your
weakest link.
You must have the technical
expertise to stitch disparate
security components into an
gap-free, end-to-end solution.
Threats evolve over time.
You must have the ongoing
security expertise to identify
and create the updates needed
to mitigate new threats as they
emerge.
Update efficiency is critical.
You must have the infrastructure,
logistics and operational
excellence to deliver and deploy
updates globally to your entire
fleet of devices in hours.
![Page 10: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/10.jpg)
How can we secure the 9 BILLION new MCU-based
devices built and deployed every year?
![Page 11: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/11.jpg)
Azure Sphere
Certified MCUs
The Azure Sphere
OS
The Azure Sphere
Security Service
Azure Sphere is an end-to-end solution for securing MCU powered devices
![Page 12: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/12.jpg)
Azure Sphere Certified Chips with a built-in hardware root of trust
created from Microsoft’s learnings securing
three generations of Xbox consoles.
![Page 13: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/13.jpg)
Multiplexed I/O
SP
I
I2C
UA
RT
I2S
TD
M
PW
M
GP
IO
AD
C
ARMCortex-M
for real time processing (2x)
Azure Sphere defines two templates for secured chips
S E C U R E D with full Pluton Security Subsystem
C O N N E C T E D with built-in Internet networking
C R O S S O V E R rich processing brought to MCUs
Internet ConnectionWiFi in first chips
FLASH ≥ 4MB
SRAM≥ 4MB
ARM Cortex-Aoptimized for
low power
MicrosoftPlutonSecurity
Subsystem
Firewalls
Highly-Secured & Internet Connected
I/O
SP
I
I2C
UA
RT
I2S
TD
M
PW
M
GP
IO
AD
C
ARMCortex-M
for real time processing (1x)
FLASH
SRAM
MicrosoftPluton
IP Block Only
Firewalls
L O C K E D with Pluton IP block
G U A R D E D by full Azure Sphere Chip
H A R D - W I R E D within device
No Internet Connection
![Page 14: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/14.jpg)
![Page 15: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/15.jpg)
The Azure Sphere OS a multi-layer defense-in-depth OS that
merges the best of Microsoft and OSS
technologies to create a trustworthy
platform for new IoT experiences
![Page 16: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/16.jpg)
Secure Application Containers
Compartmentalize code for agility, robustness & security
On-chip Cloud Services
Provide update, authentication, and connectivity
Custom Linux kernel
Empowers agile silicon evolution and reuse of code
Security Monitor
Guards integrity and access to hardware resources
Pluton Runtime
Controls processing cores and access to crypto ops
The Azure Sphere OS is optimized for IoT, security, and agility
Generic Containers (on Cortex-A)
Real-Time Containers (on Cortex-Ms)
OS
Layer 5
On-chip Cloud ServicesOS
Layer 4
HLOS KernelOS
Layer 3
Security MonitorOS
Layer 2
Azure Sphere MCUsHardware
Azure Sphere OS Architecture
Pluton RuntimeOS
Layer 1
![Page 17: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/17.jpg)
![Page 18: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/18.jpg)
The Azure Sphere Security Service guards every Azure Sphere device; it brokers
trust for connectivity through certificate based
authentication, detects emerging threats
through online failure reporting, and renews
device security through software updates.
![Page 19: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/19.jpg)
Protects your devices and your customers with
certificate-based authentication of all
communication
Detects emerging security threats through
automated processing of on-device failures
Responds to threats with fully automated
on-device updates of OS
Allows for easy deployment of software updates
to Azure Sphere powered devices
The Azure Sphere Security Service connects and protects every Azure Sphere device
Azure Sphere
Security Service
Other cloud or
on-prem
infrastructure
Azure
Your app
updatesOS updates
from Microsoft
App and
OS updates
Remote attestation &
cert based authentication
Online app and
OS failure reports
App data and telemetry
App data and telemetry
![Page 20: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/20.jpg)
Secured
MCUs
Secured
OS
Securing
Cloud Service
Device Security is like a stool; it requires three legs:
![Page 21: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/21.jpg)
How do we think about device security?
![Page 22: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/22.jpg)
Microsoft has more than 25 years experience protecting customers and their devices.
Trustworthy Computing
Initiative
Security Development
LifecycleMalware
Protection Center
Microsoft Security
Response Center
First Microsoft
Datacenter Digital Crimes
Unit Operations
Security Assurance
The first
documented
ransomware
attack
First internet
virus spreads
malicious
Kaos code
First AOL
Trojan
appears
Introduction
of phrase:
The Internet of
Things
DoS attacks shut
down Yahoo!,
Buy.com, Amazon,
eBay and CNN.
Cabir, the first
mobile device
worm, is
developed
The first
reported
ransomware
attack occurs
on connected
devices
1989 1994 1998 2004 2007 2014 20171995 1999 2005
Microsoft Security
Response Center
1997
My career begins at Microsoft
![Page 23: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/23.jpg)
SECURITY IS FOUNDATIONAL
It must be built in from the beginning.
![Page 24: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/24.jpg)
The 7 properties of highly secured devicesIs your device highly secured or does it just have some security features?
https://aka.ms/7properties
Small Trusted
Computing Base
Is your device’s security-
enforcement code protected from
bugs in other code?
Dynamic
Compartments
Can your device’s security
enforcement improve after
deployment?
Failure
Reporting
Does your device report
back failures and
anomalies?
Hardware
Root of Trust
Is your device’s identity and
software integrity secured by
hardware?
Defense in
Depth
Does your device remain
protected if one of its security
mechanisms is defeated?
Certificate-Based
Authentication
Does your device use certificates
instead of passwords for
authentication?
Renewable
Security
Does your device’s
software update
automatically?
![Page 25: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/25.jpg)
@bunniestudios
https://www.youtube.com/watch?v=RqQhWitJ1As
“Supply chains are not friendly territory.”
![Page 26: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/26.jpg)
Some properties depend only on hardware support
Unforgeable cryptographic keys generated
and protected by hardware
Hardware Root of Trust
• Hardware to protect device identity
• Hardware to secure software boot
• Hardware to attest system integrity
Hardware
Root of Trust
![Page 27: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/27.jpg)
Internal barriers limit the reach of
any single failure
Dynamic Compartments
• Hardware to create barriers
• Software to configure into compartments
Some properties depend on hardware and software
Dynamic
Compartments
Defense in
DepthSmall Trusted
Computing Base
![Page 28: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/28.jpg)
Device security renewed to overcome
emerging and evolving threats
Renewable Security
• Cloud to provide updates
• Software to apply updates
• Hardware to prevent rollbacks
Some properties depend on hardware, software and cloud
Certificate-Based
Authentication
Failure
ReportingRenewable
Security
![Page 29: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/29.jpg)
Meeting the 7 properties is difficult and costly
Design and build
a holistic solution
Recognize and mitigate
emerging threats
Distribute and apply
updates on a global scale
You’re only as secure as your
weakest link.
You must have the technical
expertise to stitch disparate
security components into an
gap-free, end-to-end solution.
Threats evolve over time.
You must have the ongoing
security expertise to identify
and create the updates needed
to mitigate new threats as they
emerge.
Update efficiency is critical.
You must have the infrastructure,
logistics and operational
excellence to deliver and deploy
updates globally to your entire
fleet of devices in hours.
![Page 30: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/30.jpg)
Context Matters: Hackers attack casino
Attackers gain access to casino database through fish tank
Entry point was a connected thermometer
Once in, other vulnerabilities were exploited
Gained access to high-roller database
![Page 31: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/31.jpg)
Opportunity Risk Responsibility
![Page 32: Securing the Billions of Devices Around Us - DARPA Hunt - Securing the Billi… · Securing the Billions of Devices Around Us Dr. Galen Hunt Distinguished Engineer and Managing Director](https://reader036.vdocuments.us/reader036/viewer/2022062922/5f071aa17e708231d41b5334/html5/thumbnails/32.jpg)
Let’s secure the future.
@galen_hunt
/in/galenh