嵌入式系统中基于硬件信任根的共享库函数指针完整性

2019 8th Mediterranean Conference on Embedded Computing (MECO) Pub Date : 2019-06-10 DOI:10.1109/MECO.2019.8760035

G. López, Michael Foreman, A. Daftardar, P. Coppock, Zayd Tolaymat, V. Mooney

{"title":"嵌入式系统中基于硬件信任根的共享库函数指针完整性","authors":"G. López, Michael Foreman, A. Daftardar, P. Coppock, Zayd Tolaymat, V. Mooney","doi":"10.1109/MECO.2019.8760035","DOIUrl":null,"url":null,"abstract":"For resource constrained embedded devices security is often an afterthought during design time. As new applications and devices are developed, they are handling more and more sensitive information. It is imperative to come up with effective solutions that can be supported by these constrained systems. In this work we propose a solution to mitigate shared library function attacks by implementing a hardware root of trust from which to store and retrieve function pointers. We offer two system variations which provide designers with flexibility to choose a lighter or a more robust version. Our work renders GOT overwrite attacks ineffective since it isolates and protects shared library function pointers.","PeriodicalId":141324,"journal":{"name":"2019 8th Mediterranean Conference on Embedded Computing (MECO)","volume":"11 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-06-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Hardware Root-of-Trust Based Integrity for Shared Library Function Pointers in Embedded Systems\",\"authors\":\"G. López, Michael Foreman, A. Daftardar, P. Coppock, Zayd Tolaymat, V. Mooney\",\"doi\":\"10.1109/MECO.2019.8760035\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"For resource constrained embedded devices security is often an afterthought during design time. As new applications and devices are developed, they are handling more and more sensitive information. It is imperative to come up with effective solutions that can be supported by these constrained systems. In this work we propose a solution to mitigate shared library function attacks by implementing a hardware root of trust from which to store and retrieve function pointers. We offer two system variations which provide designers with flexibility to choose a lighter or a more robust version. Our work renders GOT overwrite attacks ineffective since it isolates and protects shared library function pointers.\",\"PeriodicalId\":141324,\"journal\":{\"name\":\"2019 8th Mediterranean Conference on Embedded Computing (MECO)\",\"volume\":\"11 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-06-10\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 8th Mediterranean Conference on Embedded Computing (MECO)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MECO.2019.8760035\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 8th Mediterranean Conference on Embedded Computing (MECO)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MECO.2019.8760035","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

摘要

对于资源受限的嵌入式设备，安全性通常是在设计时的事后考虑。随着新的应用程序和设备的开发，它们正在处理越来越多的敏感信息。必须提出有效的解决方案，使这些受约束的系统能够提供支持。在这项工作中，我们提出了一种解决方案，通过实现硬件信任根来存储和检索函数指针，以减轻共享库函数攻击。我们提供两种系统变化，为设计人员提供灵活选择更轻或更坚固的版本。我们的工作使get覆盖攻击无效，因为它隔离并保护共享库函数指针。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Hardware Root-of-Trust Based Integrity for Shared Library Function Pointers in Embedded Systems

For resource constrained embedded devices security is often an afterthought during design time. As new applications and devices are developed, they are handling more and more sensitive information. It is imperative to come up with effective solutions that can be supported by these constrained systems. In this work we propose a solution to mitigate shared library function attacks by implementing a hardware root of trust from which to store and retrieve function pointers. We offer two system variations which provide designers with flexibility to choose a lighter or a more robust version. Our work renders GOT overwrite attacks ineffective since it isolates and protects shared library function pointers.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2019 8th Mediterranean Conference on Embedded Computing (MECO)

自引率

0.00%

发文量

期刊最新文献

E-Learning Tool to Enhance Technological Pedagogical Content Knowledge A scalable Echo State Networks hardware generator for embedded systems using high-level synthesis Exploiting Task-based Parallelism in Application Loops E-health Card Information System: Case Study Health Insurance Fund of Montenegro Smart Universal Multifunctional Digital Terminal/Portal Devices