Long-term security for connected devices
|Coordinator||Lunds universitet - Elektro och Informationsteknik|
|Funding from Vinnova||SEK 500 000|
|Project duration||May 2015 - January 2016|
|Venture||Challenge-Driven Innovation – Stage 1 initiation|
|Call||Challenge-Driven Innovation - Stage 1 Initiation 2015 (spring)|
Purpose and goal
The complete software update chain was analyzed through discussions with companies and a case study on Axis. The consortium was expanded with several companies that represent potential customers and their views on how the security update process can be improved have been the basis for the project´s focus and for further work. A market analysis has shown that the project has great potential to enhance the security of online products by making the security analysis for new vulnerabilities more efficient.
Results and expected effects
The pre-study has shown that there is great potential in utilizing specific properties of the products and the environments in which they operate in order to assess the impact of new vulnerabilities. Existing vulnerability information can often not be directly applied to a specific product because it does not take into account a variety of factors that are specific to the product. Semi-automated processes and tools for vulnerability analysis can be used to make security patching more efficient. This will lead to more secure products and better protection for the data they handle.
Approach and implementation
Work during the first part of the project was conducted jointly with all parties involved. Then we continued the study in smaller groups. LTH and Advenica focused on market and business analysis. LTH and Axis did a case study on Axis products and analyzed the problems Axis faced when new potential vulnerabilities in their products are found. LTH and SICS worked to expand the consortium and also to identify the most important needs for potential customers.