Jonathan M. McCune scite author profile

An important security challenge is to protect the execution of security-sensitive code on legacy systems from malware that may infect the OS, applications, or system devices. Prior work experienced a tradeoff between the level of security achieved and efficiency. In this work, we leverage the features of modern processors from AMD and Intel to overcome the tradeoff to simultaneously achieve a high level of security and high performance.We present TrustVisor, a special-purpose hypervisor that provides code integrity as well as data integrity and secrecy for selected portions of an application. TrustVisor achieves a high level of security, first because it can protect sensitive code at a very fine granularity, and second because it has a very small code base (only around 6K lines of code) that makes verification feasible. TrustVisor can also attest the existence of isolated execution to an external entity. We have implemented TrustVisor to protect security-sensitive code blocks while imposing less than 7% overhead on the legacy OS and its applications in the common case.

show abstract

Seeing-Is-Believing: using camera phones for human-verifiable authentication

McCune

Perrig

Reiter

2009

IJSN

111

113

View full text Add to dashboard Cite

show abstract

Seeing-Is-Believing: Using Camera Phones for Human-Verifiable Authentication

View full text Add to dashboard Cite

show abstract

Seeing-Is-Believing: Using Camera Phones for Human-Verifiable Authentication

McCune¹,

Perrig²,

Reiter³

2004

View full text Add to dashboard Cite

show abstract

Bootstrapping Trust in Commodity Computers

2010

View full text Add to dashboard Cite

Trusting a computer for a security-sensitive task (such as checking email or banking online) requires the user to know something about the computer's state. We examine research on securely capturing a computer's state, and consider the utility of this information both for improving security on the local computer (e.g., to convince the user that her computer is not infected with malware) and for communicating a remote computer's state (e.g., to enable the user to check that a web server will adequately protect her data). Although the recent "Trusted Computing" initiative has drawn both positive and negative attention to this area, we consider the older and broader topic of bootstrapping trust in a computer. We cover issues ranging from the wide collection of secure hardware that can serve as a foundation for trust, to the usability issues that arise when trying to convey computer state information to humans. This approach unifies disparate research efforts and highlights opportunities for additional work that can guide real-world improvements in computer security.

show abstract

Detection of Denial-of-Message Attacks on Sensor Network Broadcasts

McCune

Shi

Perrig

et al.

View full text Add to dashboard Cite

show abstract

Memoir: Practical State Continuity for Protected Modules

Parno

Lorch

Douceur

et al. 2011

View full text Add to dashboard Cite

Device-Enabled Authorization in the Grey System

Bauer

Garriss

McCune

et al. 2005

View full text Add to dashboard Cite

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.