Securing the Deluge network programming system

Dutta,; *, Hui; Chu, Xiaowen; Culler,

doi:10.1109/ipsn.2006.243821

Cited by 39 publications

(47 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The code watchdogs of CodeDog verifies the control semantics that reflects the actual behaviors of the software. The software update methods, such as [12][13][14], securely deliver special payloads, i.e., software objects; however, they still tackle syntactic integrity, not semantics. Even if we cannot keep safe the deployment chain, the software attestation schemes on a WSN can check the integrity of running programs after deploying software updates.…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

Secure dissemination of software updates for intelligent mobility in future wireless networks

Lee

Kwon

2016

J Wireless Com Network

View full text Add to dashboard Cite

Wireless mobile networks frequently need remote software updates to add or adjust the tasks of mobile nodes. Software update traffic, particularly in the Internet of Things (IoT), should be carefully handled since attackers can easily compromise a number of unattended devices by modifying a piece of code in the software update routine. These attacks are quite realistic and harmful as seen in the real world. To protect lower-powered mobile devices, an in-network detection mechanism is preferred. However, due to the mobility of devices, it is difficult to set a network monitor with complete context of software updates. Moreover, even the conventional integrity checks can be fooled by a replaced binary code or minimized modification. In this paper, we tackle this problem and propose CodeDog, a new approach to check the integrity of software updates in mobile environments. CodeDog generates a binary code with semantics markers. A validation of those markers proves the control flow semantics was unchanged. It can be performed on program fragments for in-network monitoring to protect incapable devices. Our evaluation result shows that CodeDog can prevent attacks in the supply chain with 4.2 % storage overhead.

show abstract

Section: Discussionmentioning

confidence: 99%

“…Deluge is a protocol for software updates in wireless sensor networks (WSNs) [12]. It takes into account the reliable delivery of large objects in lossy wireless channel.…”

Section: Ids and Software Updatesmentioning

confidence: 99%

Secure dissemination of software updates for intelligent mobility in future wireless networks

Lee

Kwon

2016

J Wireless Com Network

View full text Add to dashboard Cite

show abstract

“…inbound radio) can easily inspect all images delivered to the store. Authenticity checks can include verifying the key chain hash of the stream of program image fragments streaming by, as proposed in [13]. Alternatively, if the developer's deployment lacks preestablished authentication keys, an intermediary module can perform binary rewrites of the incoming image, mitigating manipulation of protected memory addresses [14].…”

Section: Building Rich Dataflowsmentioning

confidence: 99%

Sdlib: a sensor network data and communications library for rapid and robust application development

Chu¹,

Lin²,

Linares³

et al. 2006

2006 5th International Conference on Information Processing in Sensor Networks

View full text Add to dashboard Cite

Sensor network applications tend to exhibit significant highlevel commonalities along several major dimensions that have heretofore been underexposed, particularly in the areas of collection and dissemination. We have developed a component library, Sdlib, which presents the fundamental abstractions of collection and dissemination as part of a dataflow sytem. This allows application developers to rapidly develop applications at the nesC level. This means that Sdlib maintains significant expressivity while operating efficiently.We have built four applications, each faithful to a mature monolithic application, on top of Sdlib to compare its performance to that of original. We find that applications implemented with Sdlib are much simpler to write, just as resource efficient, and perform comparably to monolithic implementations.

show abstract

“…For example, an adversary may easily subvert such protocols by modifying or replacing the real code image being propagated to sensor nodes, introducing malicious code into the sensor network [2]. Nevertheless, such mechanisms have been secured recently, allowing the propagation of only authenticated program images originating from the base station [3,4,5,6].…”

Section: Introductionmentioning

confidence: 99%

Arbitrary Code Injection through Self-propagating Worms in Von Neumann Architecture Devices

Giannetsos

Dimitriou

Krontiris

et al. 2010

The Computer Journal

View full text Add to dashboard Cite

Malicious code (or malware) is defined as software designed to execute attacks on software systems and fulfill the harmful intents of an attacker. As lightweight embedded devices become more ubiquitous and increasingly networked, they present a new and very disturbing target for malware developers. In this paper, we demonstrate how to execute malware on wireless sensor nodes that are based on the Von Neumann architecture. We achieve this by exploiting a buffer overflow vulnerability to smash the call stack and intrude a remote node over the radio channel. By breaking the malware into multiple packets, the attacker can inject arbitrarily long malicious code to the node and completely take control of it. Then we proceed to show how the malware can be crafted to become a self-replicating worm that broadcasts itself and infects the network in a hop-by-hop manner. To our knowledge, this is the first instance of a self-propagating worm that provides a detailed analysis along with instructions in order to execute arbitrary malicious code. We also provide a complete implementation of our attack, measure its effectiveness in terms of time taken for the worm to propagate to the entire sensor network and, finally, suggest possible countermeasures.

show abstract

Securing the Deluge network programming system

Cited by 39 publications

References 33 publications

Secure dissemination of software updates for intelligent mobility in future wireless networks

Secure dissemination of software updates for intelligent mobility in future wireless networks

Sdlib: a sensor network data and communications library for rapid and robust application development

Arbitrary Code Injection through Self-propagating Worms in Von Neumann Architecture Devices

Contact Info

Product

Resources

About