Secure Device Design - critical steps to a successful implementation - (PPT)

摘要

Building a skyscraper on sand will never make it resistant enough to natural attacks. In a similar way building a Secure Device requires careful consideration to the underlying architecture in addition to the higher level design. The application architects need to carefully think through the interactions between software and hardware components and the resultant behaviour in order to make the Secure Device resilient to well known, and less common misuses. This paper covers some of the principles necessary to build a Secure Device, starting from system-level considerations about time and space partitioning and related choice of operating system. It discusses some application-level design patterns with their advantages and disadvantages at the development, deployment, and usage process.