Detecting Code Alteration by Creating a Temporary Memory Bottleneck

Gardner, Ryan W.; Garera, Sujata; Rubin, Aviel D.

doi:10.1109/tifs.2009.2033231

Cited by 31 publications

(18 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Common to all of them is that the device to be attested, called prover, sends a status report of its current software configuration to another device, called verifier, to demonstrate that it is in a known and, thus trustworthy, state. Since malicious software on the prover's platform could forge this report, its authenticity is typically assured by secure hardware [49,67,48,14,29,56,26] and/or trusted software [3,24,60,59,58,57,16,32,29,68]. Attestation based on secure hardware is most suitable for advanced computing platforms, such as smartphones, tablets, laptops, personal computers, and servers.…”

Section: Integrity Verification Of Cpsmentioning

confidence: 99%

“…However, the underlying security hardware is often too complex and/or expensive for low-end embedded systems. In contrast, software-based attestation [24,60,59,58,57,16,32], does not require secure hardware or cryptographic secrets. However, security guarantees of software-based attestation are often unclear since it usually relies on strong assumptions, such as (1) the adversary being passive while the attestation protocol is executed, and (2) optimality of the attestation algorithm and its implementation.…”

Section: Integrity Verification Of Cpsmentioning

confidence: 99%

See 1 more Smart Citation

Security and privacy challenges in industrial internet of things

Sadeghi

Wachsmann

Waidner

2015

Proceedings of the 52nd Annual Design Automation Conference

674

351

View full text Add to dashboard Cite

Today, embedded, mobile, and cyberphysical systems are ubiquitous and used in many applications, from industrial control systems, modern vehicles, to critical infrastructure. Current trends and initiatives, such as Industrie 4.0 and Internet of Things (IoT), promise innovative business models and novel user experiences through strong connectivity and effective use of next generation of embedded devices. These systems generate, process, and exchange vast amounts of security-critical and privacy-sensitive data, which makes them attractive targets of attacks. Cyberattacks on IoT systems are very critical since they may cause physical damage and even threaten human lives. The complexity of these systems and the potential impact of cyberattacks bring upon new threats. This paper gives an introduction to Industrial IoT systems, the related security and privacy challenges, and an outlook on possible solutions towards a holistic security framework for Industrial IoT systems

show abstract

Section: Integrity Verification Of Cpsmentioning

confidence: 99%

Section: Integrity Verification Of Cpsmentioning

confidence: 99%

Security and privacy challenges in industrial internet of things

Sadeghi

Wachsmann

Waidner

2015

Proceedings of the 52nd Annual Design Automation Conference

674

351

View full text Add to dashboard Cite

show abstract

“…Several works consider the strengthening of checksum algorithms and their implementations against unintended modifications by either limiting the memory available to the prover during attestation [10,29] or by using self-modifying and/or obfuscated attestation algorithms [25,11]. Many works investigate the suitability and extension of software attestation to a variety of computing platforms, including sensors, peripherals and voting machines [21,17,9,23,16].…”

Section: Related Workmentioning

confidence: 99%

A security framework for the analysis and design of software attestation

Armknecht

Sadeghi

Schulz

et al. 2013

Proceedings of the 2013 ACM SIGSAC Conference on Computer &Amp; Communications Security - CCS '13

View full text Add to dashboard Cite

Software attestation has become a popular and challenging research topic at many established security conferences with an expected strong impact in practice. It aims at verifying the software integrity of (typically) resource-constrained embedded devices. However, for practical reasons, software attestation cannot rely on stored cryptographic secrets or dedicated trusted hardware. Instead, it exploits side-channel information, such as the time that the underlying device needs for a specific computation. As traditional cryptographic solutions and arguments are not applicable, novel approaches for the design and analysis are necessary. This is certainly one of the main reasons why the security goals, properties and underlying assumptions of existing software attestation schemes have been only vaguely discussed so far, limiting the confidence in their security claims. Thus, putting software attestation on a solid ground and having a founded approach for designing secure software attestation schemes is still an important open problem.We provide the first steps towards closing this gap. Our first contribution is a security framework that formally captures security goals, attacker models and various system and design parameters. Moreover, we present a generic software attestation scheme that covers most existing schemes in the literature. Finally, we analyze its security within our framework, yielding sufficient conditions for provably secure software attestation schemes. We expect that such a consolidating work allows for a meaningful security analysis of existing schemes, supports the design of secure software attestation schemes and will inspire new research in this area.

show abstract

“…Either by generating the checksum function itself as the challenge [11] or by introducing a memory bottleneck during the checksum calculation to slow down the attacker's code [5,7]. Downside of the first approach is that it reintroduces a higher variance for the checksum function execution time.…”

Section: Related Workmentioning

confidence: 99%

SobTrA

Horsch

Wessel

Stumpf

et al. 2014

Proceedings of the 4th ACM Conference on Data and Application Security and Privacy

View full text Add to dashboard Cite

In this paper, we present SobTrA, a Software-based Trust Anchor for ARM Cortex-A processors to protect systems against software-based attacks. SobTrA enables the implementation of a software-based secure boot controlled by a third party independent from the manufacturer. Compared to hardware-based trust anchors, our concept provides some other advantages like being updateable and also usable on legacy hardware. The presented software-based trust anchor involves a trusted third party device, the verifier, locally connected to the untrusted device, e.g., via the microSD card slot of a smartphone. The verifier is verifying the integrity of the untrusted device by making sure that a piece of code is executed untampered on it using a timing-based approach. This code can then act as an anchor for a chain of trust similar to a hardware-based secure boot. Tests on our prototype showed that tampered and untampered execution of SobTrA can be clearly and reliably distinguished.

show abstract

Detecting Code Alteration by Creating a Temporary Memory Bottleneck

Cited by 31 publications

References 20 publications

Security and privacy challenges in industrial internet of things

Security and privacy challenges in industrial internet of things

A security framework for the analysis and design of software attestation

SobTrA

Contact Info

Product

Resources

About