The purpose of this course is to reveal the tools, techniques and procedures (TTPs) employed by adversaries to exploit and subvert the security of embedded systems. This course will cover core concepts and techniques to analyze and characterize the behavior of embedded systems and platforms. Concepts will be introduced and discussed within the context of an adversary intent on altering or subverting the behavior of such systems.
Learning Objectives
Define what an embedded system is and explain the basic architecture of an embedded system. Analyze a printed circuit board (PCB) and identify major components, peripherals, buses, diagnostic ports, and tap points. List the types of test equipment and tools used by hardware hackers and explain how they are used. Explain basic soldering techniques and specific PCB rework techniques used by hardware hackers. Instrument a printed circuit board (PCB) to monitor buses, decode data, and access diagnostic functionality. Identify software weaknesses in ARM-embedded architecture. Evaluate assembly code for exploits. Analyze and contrast exploitation techniques on RISC and CISC architectures. Apply exploitation techniques unique to ARM and embedded systems. Apply defenses to remediate ARM exploits.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.