As the Internet of Things (IoT) continues to expand, data security has become increasingly important for ensuring privacy and safety, especially given the sensitive and, sometimes, critical nature of the data handled by IoT devices. There exist hardware-based trusted execution environments used to protect data, but they are not compatible with low-cost devices that lack hardware-assisted security features. The research in this paper presents software-based protection and encryption mechanisms explicitly designed for embedded devices. The proposed architecture is designed to work with low-cost, low-end devices without requiring the usual changes on the underlying hardware. It protects against hardware attacks and supports runtime updates, enabling devices to write data in protected memory. The proposed solution is an alternative data security approach for low-cost IoT devices without compromising performance or functionality. Our work underscores the importance of developing secure and cost-effective solutions for protecting data in the context of IoT.

翻译：随着物联网的持续扩展，数据安全在保障隐私与安全性方面变得日益重要，尤其是考虑到物联网设备所处理数据的敏感性乃至关键性。现有基于硬件的可信执行环境可用于保护数据，但此类环境与缺乏硬件辅助安全特性的低成本设备不兼容。本文研究提出了一种专门为嵌入式设备设计的基于软件的保护与加密机制。所提出的架构旨在与低成本、低端设备协同工作，无需对底层硬件进行常规修改。该架构能够抵御硬件攻击，并支持运行时更新，使设备能够将数据写入受保护内存。该方案为低成本物联网设备提供了一种不牺牲性能或功能的替代性数据安全方法。我们的工作强调了在物联网背景下开发安全且高性价比的数据保护解决方案的重要性。