Poster Abstract: BUFS: Towards Bottom-Up Foundational Security for Software in the Internet-of-Things

The Internet-of-Things (IoT) is a rapidly growing phenomenon. While IoT-enabled objects can provide rich features that can improve users' lives, security failures can lead to severe consequences, particularly in safety-critical domains such as medical devices and automobiles. In this poster abstract, we propose BUFS, a bottom-up and foundational approach for verifying the security of the software stack in an IoT system, to provide guarantees for how the software is secure. BUFS is a secure-by-construction approach that verifies that IoT software is secure in a bottom-up and foundational way. The BUFS approach provides tools for aiding and automating parts of the software development and verification process for programmers, and is intended for safety-critical domains, where high-assurance is required.