Towards strengthening edge computing security through stack protection mechanisms

Authors

  • Justine Utsu Undiandeye
    Department of Cybersecurity, University of Calabar, Calabar, PMB 1115, Nigeria
  • Moses Adah Agana
    Department of Cybersecurity, University of Calabar, Calabar, PMB 1115, Nigeria

Keywords:

Agricultural Internet of Things, Stack protection, ARM Cortex-M4, Attack prevention

Abstract

Stack-based attacks pose a major security risk to lightweight edge computing devices used in smart agriculture. This study investigated a secure stack-protection model for Advanced RISC Machines (ARM) Cortex-M4 microcontrollers commonly used in agricultural Internet of Things (IoT) workloads in Nigeria. Six configurations were simulated: Memory Protection Unit (MPU), Stack Canary, Shadow Stack under Mask (SuM), Control-Flow Integrity (CFI), a Hybrid MPU--SuM mechanism, and an unprotected control. The Python-based simulation modelled 500 sensor readings and 100 simulated attack attempts for each mechanism. The Hybrid mechanism prevented all simulated attacks within the defined threat model while incurring only 2.90% performance overhead and a 2.83% reduction in estimated battery life. It maintained an operational lifetime above 5.8 months on a 2000 mAh battery. Although CFI also achieved complete prevention in the simulation, its 10.00% overhead reduced its suitability for latency-sensitive and duty-cycled sensor workloads. The results indicate that hardware-assisted protection, particularly MPU enforcement and the Hybrid MPU--SuM approach, can provide practical stack-level security for resource-constrained agricultural IoT nodes without requiring additional hardware.

Dimensions

[1] A. Garcia-Perez, R. Minon, A.I. Torre-Bastida & E. Zulueta, ``Analysing edge computing devices for the deployment of embedded AI'', Sensors 23 (2023) 9495. https://doi.org/10.3390/s23239495.

[2] E. Nigussie, T.O. Olwal, G. Musumba, T. Tegegne, A. Lemma & F. Mekurte, ``IoT-based irrigation management for smallholder farmers in rural sub-Saharan Africa'', Procedia Computer Science 177 (2020) 86. https://doi.org/10.1016/j.procs.2020.10.015.

[3] M.S. Dickson & C.I. Amannah, ``Augmented IoT model for smart agriculture and farm irrigation water conservation'', International Journal of Intelligence Science 13 (2023) 131. https://doi.org/10.4236/ijis.2023.134007.

[4] A. Kamilaris & F.X. Prenafeta-Boldú, ``Deep learning in agriculture: a survey'', Computers and Electronics in Agriculture 147 (2018) 70. https://doi.org/10.1016/j.compag.2018.02.016.

[5] Y. Yamak, S. Tosun & M. Aydos, ``DICEguard: enhancing DICE security for IoT devices with periodic memory forensics'', The Journal of Supercomputing 80 (2024) 19824. https://doi.org/10.1007/s11227-024-06194-7.

[6] H. Depuydt, M. Gülmez, T. Nyman & J.T. Mühlberg, ``Do we still need canaries in the coal mine? Measuring shadow stack effectiveness in countering stack smashing'', in Availability, Reliability and Security, Springer Nature Switzerland, Cham, Switzerland, 2025, p. 193. https://doi.org/10.1007/978-3-032-00627-1_10.

[7] X. Tan, S. Mohan, M. Armanuzzaman, Z. Ma, G. Liu, A. Eastman, H. Hu & Z. Zhao, ``Is the canary dead? On the effectiveness of stack canaries on microcontroller systems'', in Proceedings of the 39th ACM/SIGAPP Symposium on Applied Computing, Avila, Spain, 2024, p. 1350. https://doi.org/10.1145/3605098.3635925.

[8] B. Bierbaumer, J. Kirsch, T. Kittel, A. Francillon & A. Zarras, ``Smashing the stack protector for fun and profit'', in IFIP International Conference on ICT Systems Security and Privacy Protection, Springer, Cham, Switzerland, 2018, p. 293. https://doi.org/10.1007/978-3-319-99828-2_21.

[9] W. Choi, M. Seo, S. Lee & B.B. Kang, ``SuM: efficient shadow stack protection on ARM Cortex-M'', Computers & Security 136 (2024) 103568. https://doi.org/10.1016/j.cose.2023.103568.

[10] X. Tan, Z. Ma, S. Pinto, L. Guan, N. Zhang, J. Xu, Z. Lin, H. Hu & Z. Zhao, ``SoK: where's the `up'?! A comprehensive (bottom-up) study on the security of ARM Cortex-M systems'', in Proceedings of the 18th USENIX WOOT Conference on Offensive Technologies (WOOT '24), Philadelphia, USA, 2024, p. 149. Available online: https://www.usenix.org/conference/woot24/presentation/tan.

[11] N. Basta, M. Ikram, M.A. Kaafar & A. Walker, ``Towards a zero-trust micro-segmentation network security strategy: an evaluation framework'', in 2022 IEEE/IFIP Network Operations and Management Symposium (NOMS), Budapest, Hungary, 2022, p. 1. https://doi.org/10.1109/NOMS54207.2022.9789888.

[12] P. Yu, F. Teng, W. Zhu & C. Shen, ``Cloud--edge--device collaborative computing in smart agriculture: architectures, applications and future perspectives'', Frontiers in Plant Science 16 (2025) 1668545. https://doi.org/10.3389/fpls.2025.1668545.

[13] A. Maida, ``Leaving Nobody Behind: leveraging regulatory advantages to bridge Nigeria's digital divide", Keynote Address, Rural Connectivity Summit, Radisson Blu Hotel, Ikeja, Lagos, Nigeria, Oct. 22, 2025, Nigerian Communications Commission (NCC). [Online]. https://ncc.gov.ng/sites/default/files/2026-02/Keynote-Address-by-Dr-Aminu-Maida-at-the-Rural-Connectivity-Summit.pdf.

fig2

Published

2026-07-02

How to Cite

Towards strengthening edge computing security through stack protection mechanisms. (2026). African Scientific Reports, 5(2), 436. https://doi.org/10.46481/asr.2026.5.2.436

Issue

Section

MATHEMATICAL SCIENCES SECTION

How to Cite

Towards strengthening edge computing security through stack protection mechanisms. (2026). African Scientific Reports, 5(2), 436. https://doi.org/10.46481/asr.2026.5.2.436

Similar Articles

21-26 of 26

You may also start an advanced similarity search for this article.