通tong常chang情qing況kuang下xia，正zheng在zai設she計ji的de新xin嵌qian入ru式shi係xi統tong非fei常chang可ke能neng收shou到dao來lai自zi黑hei客ke的de惡e意yi攻gong擊ji。當dang然ran
，如ru何he避bi免mian這zhe種zhong情qing況kuang的de發fa生sheng

，都dou取qu決jue於yu你ni打da算suan如ru何he施shi加jia保bao護hu。有you些xie黑hei客ke隻zhi是shi想xiang導dao致zhi你ni的de係xi統tong崩beng潰kui，而er另ling一yi些xie人ren則ze想xiang借jie用yong它ta作zuo為wei惡e意yi平ping台tai。還hai有you一yi些xie人ren想xiang要yao了le解jie你ni設she計ji的de嵌qian入ru式shi內nei部bu構gou造zao是shi什shen麼me
，畢bi竟jing這zhe些xie算suan法fa值zhi很hen多duo錢qian。

在(zai)過(guo)去(qu)，處(chu)理(li)器(qi)隻(zhi)是(shi)負(fu)責(ze)開(kai)機(ji)運(yun)行(xing)
，而(er)安(an)全(quan)性(xing)是(shi)在(zai)程(cheng)序(xu)或(huo)操(cao)作(zuo)係(xi)統(tong)中(zhong)實(shi)現(xian)的(de)東(dong)西(xi)。它(ta)取(qu)決(jue)於(yu)你(ni)信(xin)任(ren)誰(shui)以(yi)及(ji)他(ta)們(men)的(de)工(gong)作(zuo)做(zuo)得(de)怎(zen)麼(me)樣(yang)。在(zai)最(zui)初(chu)階(jie)段(duan)
，微控製器和微處理器采取了類似的做法，如添加內存保護
，允許應用程序放置到沙盒中等等，這都是最初的安全保護措施。

xianzai，xunihuajinyibutuozhanlezheyitedian，shigaojiexitongnenggouxunihuazhenggexitong。yaobaohushaxianggongzuo，womenjiashejichuruanjianheyingjianbunengbeiyingxiang。dangran，zhezhongjiashebingbuzongshibiyaode，lirudaduoshuyingjianjuyoumouzhongxingshideruanjiancanyu，xiangshiyingpanqudongqishangdekongzhiqi。yourenkenenghuixiangdao，zaiyingpanqudongqishangdeshujuhuibeibaocun，zheduiyubaohushujubensheneryankenenghuishiyigewenti
，kenengxuyaoshiyongjiamideyingpanqudongqi。

buxingdeshi，tongguoyixiebeiheikeruqinbingzhirumumadeshijianli
，womenxianzaizhidaoqingkuangbingbushizheyangde


，yinweixiugaicigujianbujinjinshijiaguxitongdefangshi

，yetongyangshiheikemenshentoujincunchushebeideyizhongfangfa。zaizhezhongqingkuangxia，kongzhiqigujianbeixiugai，suoyicunchuzaiqudongqishangdecaozuoxitongjiangshoudaoyingxiang。eyigujianyinzangzishenhexiugai。xiangyaoshenruzhegexitongqishihenrongyi
，yinweicipanyijingzuolezhezhongleixingdeshujuzhongxinyingshelaichulibuliangshanqu

，suoyiheikezhixuyaodongdongshouzhijiunengqingeryijudehuoquruqindaima。

duiyuqianrushixitongdeshejieryan，zaibianchengshejijieduanjiuweixitongtigonganquanqudongchengxu
，shimeiyigegongchengshidouxuyaocongshidegongzuo。suizheheikeruqindecishuyujiapinfan，weiqianrushixitongzengjialaogudeanquanchengxujiuxiandeyufazhongyao。name
，naxiefangfanenggouyouxiaodefangzhiheikeruqin？shiyonghezhongxingshidejiamimiyaonenggoushichengxugenganquan
？

安全引導和加密代碼是防止初始攻擊得手的方法。

一次性可編程（OTP）或基於ROM的解決方案是另一種方法
，但這些是防止許多應用必要的現場更新。有些平台還允許調試或者使JTAG支持失能

，通常是通過OTP標誌，所以應用程序代碼不再能直接訪問
，使得逆向工程更加困難。如果檢測到攻擊，有些係統會進入防篡改極端，清除代碼和數據。

設置安全密鑰和軟件保護方案

TI的MSP432youyigeyouqudefangfalaibaohuyingyongchengxudaima，zhegeiwomendailaileyixieyouyongdeqishi。zhezhongbaohufanganyunxuzhizhixingshancunzhongdeduogekuai
，danshiyaozhixingzheyibu，yaoshidaimanenggouzaitongyigekuaizhongfangwenshuju。JTAG不會泄露代碼或數據的內容。被定義的多個塊和加密密鑰用於驗證並允許更新，這樣惡意物件就不能隻是簡單地除去或替換一個塊。MSP432不具有安全密鑰存儲或OTP支(zhi)持(chi)
，但(dan)這(zhe)些(xie)都(dou)可(ke)以(yi)使(shi)用(yong)軟(ruan)件(jian)保(bao)護(hu)方(fang)案(an)來(lai)實(shi)現(xian)。該(gai)方(fang)法(fa)允(yun)許(xu)供(gong)應(ying)商(shang)一(yi)個(ge)芯(xin)片(pian)上(shang)嵌(qian)入(ru)運(yun)行(xing)時(shi)間(jian)支(zhi)持(chi)，然(ran)後(hou)將(jiang)其(qi)提(ti)供(gong)給(gei)開(kai)發(fa)者(zhe)。開(kai)發(fa)者(zhe)可(ke)以(yi)調(tiao)用(yong)支(zhi)持(chi)程(cheng)序(xu)，但(dan)他(ta)們(men)不(bu)會(hui)直(zhi)接(jie)訪(fang)問(wen)那(na)些(xie)可(ke)以(yi)分(fen)解(jie)的(de)代(dai)碼(ma)。該(gai)計(ji)劃(hua)實(shi)際(ji)上(shang)適(shi)用(yong)於(yu)多(duo)個(ge)供(gong)應(ying)商(shang)在(zai)同(tong)一(yi)芯(xin)片(pian)上(shang)提(ti)供(gong)服(fu)務(wu)。

相關閱讀：

技術詳解：利用嵌入式降低電池功耗
技術經驗：做嵌入式硬件設計需具備的基本功
嵌入式設計可接受的抖動水平要如何確定呢？