Enabling trusted software integrity

ASPLOS X Pub Date : 2002-10-01 DOI:10.1145/605397.605409

D. Kirovski, M. Drinic, M. Potkonjak

{"title":"Enabling trusted software integrity","authors":"D. Kirovski, M. Drinic, M. Potkonjak","doi":"10.1145/605397.605409","DOIUrl":null,"url":null,"abstract":"Preventing execution of unauthorized software on a given computer plays a pivotal role in system security. The key problem is that although a program at the beginning of its execution can be verified as authentic, while running, its execution flow can be redirected to externally injected malicious code using, for example, a buffer overflow exploit. Existing techniques address this problem by trying to detect the intrusion at run-time or by formally verifying that the software is not prone to a particular attack.We take a radically different approach to this problem. We aim at intrusion prevention as the core technology for enabling secure computing systems. Intrusion prevention systems force an adversary to solve a computationally hard task in order to create a binary that can be executed on a given machine. In this paper, we present an exemplary system--SPEF--a combination of architectural and compilation techniques that ensure software integrity at run-time. SPEF embeds encrypted, processor-specific constraints into each block of instructions at software installation time and then verifies their existence at run-time. Thus, the processor can execute only properly installed programs, which makes installation the only system gate that needs to be protected. We have designed a SPEF prototype based on the ARM instruction set and validated its impact on security and performance using the MediaBench suite of applications.","PeriodicalId":377379,"journal":{"name":"ASPLOS X","volume":"7 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2002-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"94","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"ASPLOS X","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/605397.605409","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 94

Abstract

Preventing execution of unauthorized software on a given computer plays a pivotal role in system security. The key problem is that although a program at the beginning of its execution can be verified as authentic, while running, its execution flow can be redirected to externally injected malicious code using, for example, a buffer overflow exploit. Existing techniques address this problem by trying to detect the intrusion at run-time or by formally verifying that the software is not prone to a particular attack.We take a radically different approach to this problem. We aim at intrusion prevention as the core technology for enabling secure computing systems. Intrusion prevention systems force an adversary to solve a computationally hard task in order to create a binary that can be executed on a given machine. In this paper, we present an exemplary system--SPEF--a combination of architectural and compilation techniques that ensure software integrity at run-time. SPEF embeds encrypted, processor-specific constraints into each block of instructions at software installation time and then verifies their existence at run-time. Thus, the processor can execute only properly installed programs, which makes installation the only system gate that needs to be protected. We have designed a SPEF prototype based on the ARM instruction set and validated its impact on security and performance using the MediaBench suite of applications.

查看原文本刊更多论文

启用可信软件完整性

防止在给定计算机上执行未经授权的软件在系统安全中起着关键作用。关键的问题是，尽管程序在开始执行时可以被验证为是真实的，但在运行时，它的执行流可以被重定向到外部注入的恶意代码，例如，使用缓冲区溢出漏洞。现有技术通过尝试在运行时检测入侵或通过正式验证软件不容易受到特定攻击来解决此问题。我们对这个问题采取完全不同的方法。我们的目标是将防入侵技术作为保障电脑系统安全的核心技术。入侵防御系统迫使攻击者解决一个难以计算的任务，以便创建一个可以在给定机器上执行的二进制文件。在本文中，我们展示了一个典型的系统——SPEF——一个架构和编译技术的组合，它确保了软件在运行时的完整性。SPEF在软件安装时将加密的、特定于处理器的约束嵌入到每个指令块中，然后在运行时验证它们的存在。因此，处理器只能执行正确安装的程序，这使得安装成为唯一需要保护的系统门。我们设计了一个基于ARM指令集的SPEF原型，并使用mediabbench应用程序套件验证了其对安全性和性能的影响。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

ASPLOS X

自引率

0.00%

发文量