您的内存安全吗？揭示汽车微处理器机制中隐藏的漏洞.pdf

《您的内存安全吗？揭示汽车微处理器机制中隐藏的漏洞.pdf》由会员分享，可在线阅读，更多相关《您的内存安全吗？揭示汽车微处理器机制中隐藏的漏洞.pdf（68页珍藏版）》请在三个皮匠报告上搜索。

1、#BHEU BlackHatEventsIs Your Memory Protected?Is Your Memory Protected?Uncovering Hidden Vulnerabilities in Automotive MPUsNimrod Stoler&David Lazar#BHEU BlackHatEventsInformation Classification:GeneralPlaxidityX Cybersecurity Solutions for the Automotive Industry:Comprehensive cybersecurity products

2、 and servicesAutomotive intrusion detection systemsAnti-vehicle theft solutionsVulnerability managementDevSecOpsEmbedded Research TeamSpecializations:Automotive vulnerability research&Penetration testingEmbedded systems&Hardware researchReverse engineeringFuzzingHighlights:Over 250,000 hours of comb

3、ined experience in automotive cybersecurityIn-depth knowledge of the vehicle cybersecurity lifecycleExpertise in automotive architectures,protocols,and standardsProficient in UNR 155&156,ISO 21434,and related incident and vulnerability management and treatment2Who we areWho we areNimrod StolerSecuri

4、ty Researcher PlaxidityXDavid LazarEmbedded Research Team Lead PlaxidityX#BHEU BlackHatEventsInformation Classification:GeneralECUECUECUECUECUECUECUECU Electronic Control Unit3#BHEU BlackHatEventsInformation Classification:GeneralECUECUECUECUECUECUECUECU Electronic Control Unit4#BHEU BlackHatEventsI

5、nformation Classification:GeneralECUECUECUECUECUECUECU Electronic Control Unit5XExecute code from stackXSend messages to ECUsXRead sensitive dataECU#BHEU BlackHatEventsInformation Classification:General6MPUMemory Protection Unit#BHEU BlackHatEventsInformation Classification:General7AgendaAgendaMPU I

6、ntroduction&FunctionalityAnalysis of the vulnerabilities&DemoDisclosure Processes with vendorsMitigations and Concluding remarks#BHEU BlackHatEventsInformation Classification:GeneralMemory Protection UnitProgrammable hardware unit that acts as a gatekeeper of memoryDivides memory into regionsFor eac