Software Security and Randomization through Program Partitioning and Circuit Variation

Andel, Todd R.; Whitehurst, Lindsey N.; McDonald, J. Todd

doi:10.1145/2663474.2663484

Cited by 8 publications

(6 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Also, he believed that some automatic techniques, such as input rectification, functionality excision, functionality replacement, loop perforation, and cyclic memory allocation, can remove the superfluous functionality of a program and thus can eliminate security vulnerabilities (i.e., reduce the attack surface) while enabling the system to provide the normal service. Andel et al (2014) proposed that the protected program with known vulnerabilities would be divided into sections of invulnerable and vulnerable parts, and that the invulnerable sections would run on a traditional processor as usual while the vulnerable sections run on a field-programmable gate array (FPGA), which can make sure that the attacks on the vulnerable sections are no longer carried out. In this sense, it seems that the attack surface of the protected program is reduced.…”

Section: Attack Surface Reductionmentioning

confidence: 99%

Moving target defense: state of the art and characteristics

Cai

Wang

et al. 2016

Frontiers Inf Technol Electronic Eng

View full text Add to dashboard Cite

Moving target defense (MTD) has emerged as one of the game-changing themes to alter the asymmetric situation between attacks and defenses in cyber-security. Numerous related works involving several facets of MTD have been published. However, comprehensive analyses and research on MTD are still absent. In this paper, we present a survey on MTD technologies to scientifically and systematically introduce, categorize, and summarize the existing research works in this field. First, a new security model is introduced to describe the changes in the traditional defense paradigm and security model caused by the introduction of MTD. A function-and-movement model is provided to give a panoramic overview on different perspectives for understanding the existing MTD research works. Then a systematic interpretation of published literature is presented to describe the state of the art of the three main areas in the MTD field, namely, MTD theory, MTD strategy, and MTD evaluation. Specifically, in the area of MTD strategy, the common characteristics shared by the MTD strategies to improve system security and effectiveness are identified and extrapolated. Thereafter, the methods to implement these characteristics are concluded. Moreover, the MTD strategies are classified into three types according to their specific goals, and the necessary and sufficient conditions of each type to create effective MTD strategies are then summarized, which are typically one or more of the aforementioned characteristics. Finally, we provide a number of observations for the future direction in this field, which can be helpful for subsequent researchers.

show abstract

Section: Attack Surface Reductionmentioning

confidence: 99%

Moving target defense: state of the art and characteristics

Cai

Wang

et al. 2016

Frontiers Inf Technol Electronic Eng

View full text Add to dashboard Cite

show abstract

“…An FPGA can undergo PR and PDR without stopping execution, as long as the part being reconfigured isn't in use while the update is happening [3]. This allows FPGAs to be changed dynamically during execution, and when paired with circuit variants or program partitioning [2] allows for MTD at the circuit level. Having a partitioned program on a SoC could even be made to mimic scheduling specific parts of code to run on a co-processor for performance increases [8].…”

Section: Partial / Partial Dynamic Reconfigurationmentioning

confidence: 99%

“…A program can be represented logically as a circuit, which also means that equivalent circuits can be created where all of the circuits will have the same functionality [2]. Combining PDR with circuit variants, and possibly program partitioning, will allow a SoC to have a dynamically, and probably constantly, changing circuitry implementation of a program without effecting the functional aspect.…”

Section: Using Pdr To Counter Mate Attacksmentioning

confidence: 99%

The Application of Moving Target Defense to Field Programmable Gate Arrays

Dombrowski

Andel

McDonald

2016

Proceedings of the 11th Annual Cyber and Information Security Research Conference

Self Cite

View full text Add to dashboard Cite

Field Programmable Gate Arrays (FPGAs) are powerful and flexible pieces of hardware used in a variety of applications. These chips are used in monitoring network traffic, guidance systems, cryptographic calculations, medical devices, embedded systems, as well as many other varied uses. They can be used in a large number of ways as well as in a large number of areas, which allows for nearly limitless applications. Outside of being used as a cryptographic processor and network monitoring, these chips are not being used to directly provide software/hardware security. FPGAs are extremely widespread in addition to becoming more integrated into the systems that they are a part of. This leads to vulnerabilities in almost every system that uses these chips. One way to combat these FPGA based vulnerabilities in every system using them, is to implement a Moving Target Defense (MTD) on the chip itself. FPGA based MTD would allow each FPGA to enhance, rather than weaken, the security of a system. This paper incorporates previous applications of Field Programmable Gate Arrays, and explores potential software/hardware security implementations for these chips through the application of Moving Target Defenses. CCS Concepts • Security and privacy ➝ Security in hardware • Security and privacy ➝ Intrusion/anomaly detection and malware mitigation ➝ Malware and its mitigation

show abstract

“…Though hardware based version using a FPGA as a register might increase speed enough to be used on a machine in the control center, this is a technique still under development (Andel et al, 2014) and not yet amenable to integration into any SCADA system component.…”

Section: Instruction Set Randomization (Isr)mentioning

confidence: 99%