Understanding Cybersecurity Threats in Embedded Devices

A consortium in the US has come together to address the growing concerns surrounding cybersecurity threats to embedded devices. The EMB3D cybersecurity threat model, developed through a collaborative effort by MITRE, Niyo Little Thunder Pearson, Red Balloon Security, and Narf Industries, aims to provide a comprehensive understanding of these threats and the necessary security mechanisms for mitigation.

Various organizations from sectors such as energy, water, manufacturing, aerospace, health, automotive, as well as researchers and threat tool vendors, have tested the threat model and provided valuable feedback. EMB3D builds upon existing models like Common Weakness Enumeration, MITRE ATT&CK, and Common Vulnerabilities and Exposures, focusing specifically on embedded devices.

The model maps threats to device properties, enabling users to create tailored threat models for specific embedded devices. For each threat identified, suggested mitigations are offered, outlining the technical mechanisms that device vendors should implement to enhance security and mitigate potential risks.

EMB3D is designed to evolve continuously, with new threats and mitigations being added over time to adapt to emerging threat actors and vulnerabilities. It serves as a public resource where the security community can contribute additions and revisions, fostering a collaborative approach to enhancing embedded device security.

The team behind EMB3D is dedicated to promoting a "secure by design" approach. Yosry Barsoum, vice president and director of the Center for Securing the Homeland at MITRE, emphasized the strength of the framework's collaborative nature in addressing the evolving challenges in embedded device security.

Device properties, threats, and mitigations are key components of the EMB3D framework. Device properties encompass hardware, software components, network services, protocols, and firmware, each mapped to specific threats to facilitate threat identification. Threat descriptions outline the technical features targeted by threat actors, actions required to execute the threat, and vulnerabilities within the mechanism enabling these actions.

Mitigation strategies provided by EMB3D offer guidance for device vendors to enhance protection against threats and for end users to verify the security of their devices. These strategies define mechanisms or technologies that safeguard against threats while allowing flexibility in implementation within the unique constraints of each device.

The MITRE EMB3D Threat Model is now publicly accessible at emb3d.mitre.org, serving as a valuable resource for enhancing embedded device security and fostering collaboration within the cybersecurity community.