Nisrine Jafri scite author profile

Nisrine Jafri

Sign up to set email alerts

|

5Publications

72Citation Statements Received

221Citation Statements Given

How they've been cited

How they cite others

Affiliations

CEA Grenoble, Inria Rennes - Bretagne Atlantique Research Centre

Publications

Order By: Most citations

An Automated Formal Process for Detecting Fault Injection Vulnerabilities in Binaries and Case Study on PRESENT

¹

,

²

,

³

et al. 2017

View full text Add to dashboard Cite

Recently fault injection has increasingly been used both to attack software applications, and to test system robustness. Detecting fault injection vulnerabilities has been approached with a variety of different but limited methods. This paper proposes a general process without these limitations that uses model checking to detect fault injection vulnerabilities in binaries. The efficacy of this process is demonstrated by detecting vulnerabilities in the PRESENT binary.

An automated and scalable formal process for detecting fault injection vulnerabilities in binaries

¹

,

³

et al. 2018

Concurrency and Computation

View full text Add to dashboard Cite

Fault injection has increasingly been used both to attack software applications, and to test system robustness. Detecting fault injection vulnerabilities has been approached with a variety of different but limited methods. This paper proposes an extension of a recently published general model checking based process to detect fault injection vulnerabilities in binaries. This new extension makes the general process scalable to real-world implementions which is demonstrated by detecting vulnerabilities in different cryptographic implementations.

A Formal Verification of Safe Update Point Detection in Dynamic Software Updating

et al. 2017

View full text Add to dashboard Cite

Combined software and hardware fault injection vulnerability detection

¹

,

²

,

³

2020

Innovations Syst Softw Eng

View full text Add to dashboard Cite

The State of Fault Injection Vulnerability Detection

¹

,

²

,

³

2018

View full text Add to dashboard Cite

Fault injection is a well known method to test the robustness and security vulnerabilities of software. Fault injections can be explored by simulations (cheap, but not validated) and hardware experiments (true, but very expensive). Recent simulation works have started to apply formal methods to the detection, analysis, and prevention of fault injection attacks to address verifiability. However, these approaches are ad-hoc and extremely limited in architecture, fault model, and breadth of application. Further, there is very limited connection between simulation results and hardware experiments. Recent work has started to consider broad spectrum simulation approaches that can cover many fault models and relatively large programs. Similarly the connection between these broad spectrum simulations and hardware experiments is being validated to bridge the gap between the two approaches. This presentation highlights the latest developments in applying formal methods to fault injection vulnerability detection, and validating software and hardware results with one another.

1

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Copyright © 2024 scite LLC. All rights reserved.

Made with 💙 for researchers

Part of the Research Solutions Family.