电磁故障注入作为一种新的soc取证方法

2020 IEEE International Workshop on Information Forensics and Security (WIFS) Pub Date : 2020-12-06 DOI:10.1109/WIFS49906.2020.9360902

Clément Gaine, D. Aboulkassimi, S. Pontié, J. Nikolovski, J. Dutertre

{"title":"电磁故障注入作为一种新的soc取证方法","authors":"Clément Gaine, D. Aboulkassimi, S. Pontié, J. Nikolovski, J. Dutertre","doi":"10.1109/WIFS49906.2020.9360902","DOIUrl":null,"url":null,"abstract":"Smartphones have a complex hardware and software architecture. Having access to their full memory space can help solve judicial investigations. We propose a new privilege escalation technique in order to access hidden contents and execute sensitive operations. While classical forensic tools mostly exploit software vulnerabilities, it is based on a hardware security evaluation technique. Electromagnetic fault injection is such a technique usually used for microcontrollers or FPGA security characterization. A security function running at 1.2GHz on a 64-bit SoC with a Linux-based OS was successfully attacked. The Linux authentication module uses this function to verify the password correctness by comparing two hash values. Hence, this work constitutes a step towards smartphones privilege escalation through electromagnetic fault injection. This approach is interesting for addressing forensic issues on smartphones.","PeriodicalId":354881,"journal":{"name":"2020 IEEE International Workshop on Information Forensics and Security (WIFS)","volume":"12 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"16","resultStr":"{\"title\":\"Electromagnetic Fault Injection as a New Forensic Approach for SoCs\",\"authors\":\"Clément Gaine, D. Aboulkassimi, S. Pontié, J. Nikolovski, J. Dutertre\",\"doi\":\"10.1109/WIFS49906.2020.9360902\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Smartphones have a complex hardware and software architecture. Having access to their full memory space can help solve judicial investigations. We propose a new privilege escalation technique in order to access hidden contents and execute sensitive operations. While classical forensic tools mostly exploit software vulnerabilities, it is based on a hardware security evaluation technique. Electromagnetic fault injection is such a technique usually used for microcontrollers or FPGA security characterization. A security function running at 1.2GHz on a 64-bit SoC with a Linux-based OS was successfully attacked. The Linux authentication module uses this function to verify the password correctness by comparing two hash values. Hence, this work constitutes a step towards smartphones privilege escalation through electromagnetic fault injection. This approach is interesting for addressing forensic issues on smartphones.\",\"PeriodicalId\":354881,\"journal\":{\"name\":\"2020 IEEE International Workshop on Information Forensics and Security (WIFS)\",\"volume\":\"12 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-12-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"16\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 IEEE International Workshop on Information Forensics and Security (WIFS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/WIFS49906.2020.9360902\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE International Workshop on Information Forensics and Security (WIFS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WIFS49906.2020.9360902","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 16

摘要

智能手机拥有复杂的硬件和软件架构。访问他们的全部存储空间可以帮助解决司法调查。为了访问隐藏内容和执行敏感操作，我们提出了一种新的权限升级技术。虽然传统的取证工具主要利用软件漏洞，但它是基于硬件安全评估技术的。电磁故障注入是一种通常用于微控制器或FPGA安全表征的技术。事件解释在linux操作系统下，64位SoC上运行1.2GHz的安全功能被成功攻击。Linux认证模块使用该函数通过比较两个哈希值来验证密码的正确性。因此，这项工作构成了通过电磁故障注入实现智能手机特权升级的一步。这种方法对于解决智能手机上的法医问题很有趣。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Electromagnetic Fault Injection as a New Forensic Approach for SoCs

Smartphones have a complex hardware and software architecture. Having access to their full memory space can help solve judicial investigations. We propose a new privilege escalation technique in order to access hidden contents and execute sensitive operations. While classical forensic tools mostly exploit software vulnerabilities, it is based on a hardware security evaluation technique. Electromagnetic fault injection is such a technique usually used for microcontrollers or FPGA security characterization. A security function running at 1.2GHz on a 64-bit SoC with a Linux-based OS was successfully attacked. The Linux authentication module uses this function to verify the password correctness by comparing two hash values. Hence, this work constitutes a step towards smartphones privilege escalation through electromagnetic fault injection. This approach is interesting for addressing forensic issues on smartphones.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2020 IEEE International Workshop on Information Forensics and Security (WIFS)

自引率

0.00%

发文量

期刊最新文献

Post-Quantum Secure Two-Party Computation for Iris Biometric Template Protection AmpleDroid Recovering Large Object Files from Android Application Memory The Suitability of RSA for Bulk Data Encryption ALASKA#2: Challenging Academic Research on Steganalysis with Realistic Images Landmark Breaker: Obstructing DeepFake By Disturbing Landmark Extraction