{"id":"https://openalex.org/W7142556441","doi":"https://doi.org/10.1007/s10207-026-01233-1","title":"Bridging remote attestation and secure software updates in embedded systems","display_name":"Bridging remote attestation and secure software updates in embedded systems","publication_year":2026,"publication_date":"2026-03-28","ids":{"openalex":"https://openalex.org/W7142556441","doi":"https://doi.org/10.1007/s10207-026-01233-1"},"language":"en","primary_location":{"id":"doi:10.1007/s10207-026-01233-1","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-026-01233-1","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-026-01233-1.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/s10207-026-01233-1.pdf","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5053627859","display_name":"Ahmad B. Usman","orcid":"https://orcid.org/0000-0001-6781-1420"},"institutions":[{"id":"https://openalex.org/I102134673","display_name":"Link\u00f6ping University","ror":"https://ror.org/05ynxx418","country_code":"SE","type":"education","lineage":["https://openalex.org/I102134673"]}],"countries":["SE"],"is_corresponding":true,"raw_author_name":"Ahmad B. Usman","raw_affiliation_strings":["Department of Computer and Information Science, Link\u00f6ping University, Link\u00f6ping, 58183, Sweden"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science, Link\u00f6ping University, Link\u00f6ping, 58183, Sweden","institution_ids":["https://openalex.org/I102134673"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075355839","display_name":"Zeeshan Afzal","orcid":"https://orcid.org/0000-0001-9886-6651"},"institutions":[{"id":"https://openalex.org/I102134673","display_name":"Link\u00f6ping University","ror":"https://ror.org/05ynxx418","country_code":"SE","type":"education","lineage":["https://openalex.org/I102134673"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Zeeshan Afzal","raw_affiliation_strings":["Department of Computer and Information Science, Link\u00f6ping University, Link\u00f6ping, 58183, Sweden"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science, Link\u00f6ping University, Link\u00f6ping, 58183, Sweden","institution_ids":["https://openalex.org/I102134673"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5052612328","display_name":"Mikael Asplund","orcid":"https://orcid.org/0000-0003-1916-3398"},"institutions":[{"id":"https://openalex.org/I102134673","display_name":"Link\u00f6ping University","ror":"https://ror.org/05ynxx418","country_code":"SE","type":"education","lineage":["https://openalex.org/I102134673"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Mikael Asplund","raw_affiliation_strings":["Department of Computer and Information Science, Link\u00f6ping University, Link\u00f6ping, 58183, Sweden"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science, Link\u00f6ping University, Link\u00f6ping, 58183, Sweden","institution_ids":["https://openalex.org/I102134673"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5053627859"],"corresponding_institution_ids":["https://openalex.org/I102134673"],"apc_list":{"value":2590,"currency":"EUR","value_usd":3190},"apc_paid":{"value":2590,"currency":"EUR","value_usd":3190},"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.8318003,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"25","issue":"2","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9775000214576721,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9775000214576721,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.004900000058114529,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.0015999999595806003,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/bridging","display_name":"Bridging (networking)","score":0.5641999840736389},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5457000136375427},{"id":"https://openalex.org/keywords/direct-anonymous-attestation","display_name":"Direct Anonymous Attestation","score":0.47589999437332153},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4717999994754791},{"id":"https://openalex.org/keywords/trusted-computing","display_name":"Trusted Computing","score":0.46939998865127563},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.4645000100135803},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.4499000012874603},{"id":"https://openalex.org/keywords/trustworthiness","display_name":"Trustworthiness","score":0.4339999854564667},{"id":"https://openalex.org/keywords/cryptographic-protocol","display_name":"Cryptographic protocol","score":0.4293999969959259}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8485000133514404},{"id":"https://openalex.org/C174348530","wikidata":"https://www.wikidata.org/wiki/Q188635","display_name":"Bridging (networking)","level":2,"score":0.5641999840736389},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5457000136375427},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.5453000068664551},{"id":"https://openalex.org/C169796023","wikidata":"https://www.wikidata.org/wiki/Q3708936","display_name":"Direct Anonymous Attestation","level":3,"score":0.47589999437332153},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4717999994754791},{"id":"https://openalex.org/C2776831232","wikidata":"https://www.wikidata.org/wiki/Q966812","display_name":"Trusted Computing","level":2,"score":0.46939998865127563},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.4645000100135803},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4560000002384186},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.4499000012874603},{"id":"https://openalex.org/C153701036","wikidata":"https://www.wikidata.org/wiki/Q659974","display_name":"Trustworthiness","level":2,"score":0.4339999854564667},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.4293999969959259},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.4246000051498413},{"id":"https://openalex.org/C202775310","wikidata":"https://www.wikidata.org/wiki/Q1140366","display_name":"Trusted Platform Module","level":2,"score":0.39410001039505005},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.36959999799728394},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.3571000099182129},{"id":"https://openalex.org/C154488198","wikidata":"https://www.wikidata.org/wiki/Q1335007","display_name":"Embedded software","level":3,"score":0.31700000166893005},{"id":"https://openalex.org/C48103436","wikidata":"https://www.wikidata.org/wiki/Q599031","display_name":"State (computer science)","level":2,"score":0.31200000643730164},{"id":"https://openalex.org/C39217717","wikidata":"https://www.wikidata.org/wiki/Q1432354","display_name":"Hardware security module","level":3,"score":0.3021000027656555},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.29019999504089355},{"id":"https://openalex.org/C147346212","wikidata":"https://www.wikidata.org/wiki/Q5492632","display_name":"Trusted computing base","level":4,"score":0.2867000102996826},{"id":"https://openalex.org/C82876162","wikidata":"https://www.wikidata.org/wiki/Q17096504","display_name":"Latency (audio)","level":2,"score":0.2711000144481659},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.26910001039505005},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.26429998874664307},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.25600001215934753},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.2542000114917755},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.25110000371932983}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/s10207-026-01233-1","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-026-01233-1","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-026-01233-1.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1007/s10207-026-01233-1","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-026-01233-1","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-026-01233-1.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G8683756101","display_name":null,"funder_award_id":"support","funder_id":"https://openalex.org/F4320322327","funder_display_name":"Knut och Alice Wallenbergs Stiftelse"}],"funders":[{"id":"https://openalex.org/F4320322327","display_name":"Knut och Alice Wallenbergs Stiftelse","ror":"https://ror.org/004hzzk67"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W7142556441.pdf","grobid_xml":"https://content.openalex.org/works/W7142556441.grobid-xml"},"referenced_works_count":45,"referenced_works":["https://openalex.org/W1543208993","https://openalex.org/W1544304752","https://openalex.org/W2010182270","https://openalex.org/W2099613071","https://openalex.org/W2108403445","https://openalex.org/W2110022211","https://openalex.org/W2135274013","https://openalex.org/W2169633417","https://openalex.org/W2234639732","https://openalex.org/W2296469576","https://openalex.org/W2604623598","https://openalex.org/W2738810779","https://openalex.org/W2753280246","https://openalex.org/W2795041190","https://openalex.org/W2808465942","https://openalex.org/W2883374116","https://openalex.org/W2917674333","https://openalex.org/W2920921666","https://openalex.org/W2997695369","https://openalex.org/W2999744542","https://openalex.org/W3021704956","https://openalex.org/W3113667237","https://openalex.org/W3161076753","https://openalex.org/W3212146520","https://openalex.org/W3213708112","https://openalex.org/W4210531213","https://openalex.org/W4254098104","https://openalex.org/W4293024103","https://openalex.org/W4293234331","https://openalex.org/W4298325597","https://openalex.org/W4306167577","https://openalex.org/W4312121149","https://openalex.org/W4315927453","https://openalex.org/W4365445201","https://openalex.org/W4383221394","https://openalex.org/W4385688327","https://openalex.org/W4388858849","https://openalex.org/W4389279173","https://openalex.org/W4389279174","https://openalex.org/W4400977202","https://openalex.org/W4400977227","https://openalex.org/W4402216564","https://openalex.org/W4403937327","https://openalex.org/W4407027540","https://openalex.org/W4410415730"],"related_works":[],"abstract_inverted_index":{"Abstract":[0],"Remote":[1],"attestation":[2],"enables":[3],"centralized":[4],"entities":[5],"to":[6,46,96,133],"assess":[7],"the":[8,59,75,81,85,102,105,149],"trustworthiness":[9],"of":[10,88,104,162],"remote":[11],"devices.":[12],"However,":[13],"despite":[14],"its":[15,98,109],"utility,":[16],"existing":[17],"approaches":[18],"often":[19],"lack":[20],"explicit":[21],"support":[22],"for":[23,30,73],"secure":[24],"software":[25,48],"updates,":[26],"which":[27,148],"are":[28],"essential":[29],"maintaining":[31],"long-term":[32],"security":[33,110,122,131,156],"in":[34,147],"embedded":[35,52,93],"systems.":[36,53],"This":[37],"paper":[38],"presents":[39],"RASUES,":[40],"a":[41,91,129,159],"remote-attestation-based":[42],"scheme":[43],"specifically":[44],"designed":[45],"integrate":[47],"update":[49,69],"mechanisms":[50],"into":[51],"To":[54],"achieve":[55],"this,":[56],"we":[57,127],"extend":[58],"RATS":[60],"(Remote":[61],"ATtestation":[62],"procedureS)":[63],"RFC":[64],"9334":[65],"specification":[66],"with":[67,154],"an":[68],"procedure":[70],"that":[71,113],"accounts":[72],"both":[74],"expected":[76],"state":[77],"before":[78],"and":[79,107,137,165],"after":[80],"update.":[82],"We":[83,100,143],"implement":[84],"core":[86],"functionality":[87],"RASUES":[89,114,140],"on":[90],"TPM-based":[92],"hardware":[94],"platform":[95],"demonstrate":[97,138],"feasibility.":[99],"evaluate":[101],"latency":[103],"prototype":[106],"analyze":[108],"properties,":[111],"revealing":[112],"introduces":[115],"minimal":[116],"performance":[117],"overhead":[118],"while":[119],"significantly":[120],"enhancing":[121],"under":[123],"defined":[124],"assumptions.":[125],"Furthermore,":[126],"conduct":[128],"comprehensive":[130],"analysis":[132],"identify":[134],"potential":[135],"threats":[136],"how":[139],"mitigates":[141],"them.":[142],"also":[144],"highlight":[145],"areas":[146],"protocol":[150],"must":[151],"be":[152],"complemented":[153],"additional":[155],"mechanisms,":[157],"ensuring":[158],"transparent":[160],"evaluation":[161],"RASUES\u2019s":[163],"capabilities":[164],"limitations.":[166]},"counts_by_year":[],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2026-03-29T00:00:00"}