This book offers readers comprehensive coverage of security policy specification using new policy languages, implementation of security policies in Systems-on-Chip (SoC) - current industrial practice, as well as emerging approaches to architecting SoC security policies and security policy verification. The authors focus on a promising security architecture for implementing security policies, which satisfies the goals of flexibility, verification, and upgradability from the ground up, including a plug-and-play hardware block in which all policy implementations are enclosed. Using this architecture, they discuss the ramifications of designing SoC security policies, including effects on non-functional properties (power/performance), debug, validation, and upgrade. The authors also describe a systematic approach for "hardware patching", i.e., upgrading hardware implementations of security requirements safely, reliably, and securely in the field, meeting a critical need for diverse Internet of Things (IoT) devices.

Chapter1: SoC Security Policies: The State of the Practice.- Chapter2: E-IIPS: A Centralized Policy Implementation Architecture.- Chapter3: Exploiting Design-for-Debug in SoC Security Policy Architecture.- Chapter4: Security Assurance in SoC in presence of Untrusted IP Blocks.- Chapter5: A Move Towards a Hardware Patch.- Chapter6: SoC Security Policy Verification.- Chapter7: SoC Security Policies: Summary and Future Directions.