Architectural Support for Copy and Tamper Resistant Software

Lie, David; Thekkath, Chandramohan A.; Mitchell, Mark A.; Lincoln, Patrick; Boneh, Dan

doi:10.21236/ada419599

Cited by 147 publications

(118 citation statements)

References 0 publications

Supporting

Mentioning

118

Contrasting

Order By: Relevance

“…It should be noted that there is a vast body of practical research and development on hardware assisted software protection. The available art for hardware-assisted security is based on memory devices such as floppy disks [31], CDROMs [97], modern removable storage media (hard disk, recordable DVD, secure digital memory card), and video playback units [1]: secure processors [50], smart cards [10], and hardware dongles [15], [58], [83]. 1 Many of these schemes are trade secrets, although some are the subject of patent disclosures.…”

Section: Defenses Against Malicious Host Attacksmentioning

confidence: 99%

Watermarking, tamper-proofing, and obfuscation - tools for software protection

Collberg

Thomborson

2002

IIEEE Trans. Software Eng.

557

308

View full text Add to dashboard Cite

AbstractÐWe identify three types of attack on the intellectual property contained in software and three corresponding technical defenses. A defense against reverse engineering is obfuscation, a process that renders software unintelligible but still functional. A defense against software piracy is watermarking, a process that makes it possible to determine the origin of software. A defense against tampering is tamper-proofing, so that unauthorized modifications to software (for example, to remove a watermark) will result in nonfunctional code. We briefly survey the available technology for each type of defense.

show abstract

Section: Defenses Against Malicious Host Attacksmentioning

confidence: 99%

Watermarking, tamper-proofing, and obfuscation - tools for software protection

Collberg

Thomborson

2002

IIEEE Trans. Software Eng.

557

308

View full text Add to dashboard Cite

show abstract

“…Several of these focus on providing architectural support for encrypted execution and storage. In [16], the authors introduce the concept of eXecute-Only Memory, or XOM, which provides a mechanism for cryptographic separation of instruction and data-memory space. The prohibitive performance impact of XOM was later improved in [32] by using a "one-time pad" encryption scheme to reduce encryption latencies.…”

Section: Attack Detectionmentioning

confidence: 99%

“…Once rollback takes place, the HPU would identify and decrypt the encrypted instructions so that they can be executed upon rollback and re-execution. Using the HPU as an accelerated encryption engine could also be extended to create an execution environment similar to XOM [16]. Instead of decrypting placeholder instructions upon rollback, the HPU would encrypt the entire instruction space.…”

Section: Heavyweight Protection Unitmentioning

confidence: 99%

Automated software attack recovery using rollback and huddle

Sathre

Zambreno

2008

Des Autom Embed Syst

View full text Add to dashboard Cite

While research into building robust and survivable networks has steadily intensified in recent years, similar efforts at the application level and below have focused primarily on attack discovery, ignoring the larger issue of how to gracefully recover from an intrusion at that level. Our work attempts to bridge this inherent gap between theory and practice through the introduction of a new architectural technique, which we call rollback and huddle. Inspired by concepts made popular in the world of software debug, we propose the inclusion of extra on-chip hardware for the efficient storage and tracing of execution contexts. Upon the detection of some software protection violation, the application is restarted at the last known safe checkpoint (the rollback part). During this deterministic replay, an additional hw/sw module is then loaded that can increase the level of system monitoring, log more detailed information about any future attack source, and potentially institute a live patch of the vulnerable part of the software executable (the huddle part). Our experimental results show that this approach could have a practical impact on modern computing system architectures, by allowing for the inclusion of low-overhead software security features while at the same time incorporating an ability to gracefully recover from attack.

show abstract

“…Among them, regarding software integrity problems, there have been efforts to solve the problems such as XOM [8,26], off-chip memory security solution [45], and secure single chip processors [2,40] from a hardware perspective.…”

Section: Introductionmentioning

confidence: 99%

Efficient scheme of verifying integrity of application binaries in embedded operating systems

2010

View full text Add to dashboard Cite

Currently, embedded systems have been widely used for ubiquitous computing environments including digital setup boxes, mobile phones, and USN (Ubiquitous Sensor Networks). The significance of security has been growing as it must be necessarily embedded in all these systems. Up until now, many researchers have made efforts to verify the integrity of applied binaries downloaded in embedded systems. The research of problem solving is organized into hardware methods and software-like methods. In this research, the basic approach to solving problems from the software perspective was employed. From the software perspective, unlike in the existing papers (Seshadri et al., Proc. the IEEE symposium on security and privacy, 2004; Seshadri et al., Proc. the symposium on operating systems principals, 2005) based on the standardized model (TTAS.KO-11.0054. http://www.tta.or.kr 2006) publicized in Korea, there is no extra verifier and conduct for the verification function in the target system. Contrary to the previous schemes (Jung et al. Efficient scheme of verifying integrity of application binaries 677scheme is more efficient because it dramatically reduces overhead in storage space, and when it comes to computing, it performs one hash algorithm for initial execution and thereafter compares 1 validation check bit only, instead of signature and hash algorithms for every application binary. Furthermore, in cases where there are frequent changes in the i-node structure or file data depending on the scheme application, the scheme can provide far more effective verification performance compared to the previous schemes.

show abstract

Architectural Support for Copy and Tamper Resistant Software

Cited by 147 publications

References 0 publications

Watermarking, tamper-proofing, and obfuscation - tools for software protection

Watermarking, tamper-proofing, and obfuscation - tools for software protection

Automated software attack recovery using rollback and huddle

Efficient scheme of verifying integrity of application binaries in embedded operating systems

Contact Info

Product

Resources

About