Exploiting Instruction Streams To Prevent Intrusion - PowerPoint PPT Presentation

About This Presentation
Title:

Exploiting Instruction Streams To Prevent Intrusion

Description:

Exploiting Instruction Streams To Prevent Intrusion Milena Milenkovic Outline Introduction Related Work Trusted Instruction Execution Framework The Framework ... – PowerPoint PPT presentation

Number of Views:88
Avg rating:3.0/5.0
Slides: 20
Provided by: mm745
Learn more at: http://www.ece.uah.edu
Category:

less

Transcript and Presenter's Notes

Title: Exploiting Instruction Streams To Prevent Intrusion


1
Exploiting Instruction StreamsTo Prevent
Intrusion
  • Milena Milenkovic

2
Outline
  • Introduction
  • Related Work
  • Trusted Instruction Execution Framework
  • The Framework Potential
  • Conclusion

3
Introduction
  • Most of todays computers connected to Internet,
  • Even more in the future, including embedded
    devices
  • One of the major security problems the
    execution of the unauthorized code
  • A lot of applications may be vulnerable
  • Attack examples
  • buffer overflow (heap, stack)
  • format string attack

4
Introduction
  • Stack-smashing

5
Introduction
  • One solution allow only execution of trusted
    instructions
  • Trusted instructions with a valid signature
  • Previous researchlimited number of instruction
    streams(dynamic basic blocks)
  • Use basic block signaturesrun-time verification
    of the last basic block in an instruction stream
  • Signatures calculated during trusted
    installation

6
Related Work
  • Two categories
  • Static source code analysis
  • Dynamic detection/prevention
  • Static code analysis false alarms
  • Dynamic
  • Secure Program Execution Framework (SPEF)
  • Tag spurious data
  • Monitoring program behavior (system calls,
    performance monitoring registers)
  • Split stack for data/addresses, or secure stack
  • Compilers, compiler and library patches

7
Related Work
  • Most related SPEF a given program binary has
    numerous representations with the same
    functionality
  • During installation, each instruction block is
    transformed verified in the run-time
  • compute transformation-invariant hash of the
    instruction block
  • encrypt the hash value with the secret key
  • use encrypted value to select a transformation
    (e.g., a particular instruction order in case
    of instruction scheduling)
  • 7.5-17.1 increased execution time, Mediabench
  • Also related tamper-proof techniques, but
    different granularity

8
Trusted Instruction Execution
  • Requirements
  • prevent the execution of unauthorized code
  • the security features should not significantly
    increase the program execution time
  • This project proposes a framework that
    satisfies requirements

9
Trusted Instruction Execution
  • Atomic code unit protected by its signature a
    basic block
  • Verify all basic blocks?
  • It is enough to verify the signatureof the last
    basic block (LBB) in the instruction stream,
    when LBB generated a cache miss
  • Signatures on hard disk encrypted

10
Architecture for Trusted Computing
BBST Basic Block Signature Table BBST_M
Basic Block Signature Table (Memory) BBSVU
Basic Block Signature Verification Unit
L1D
MMU
Datapath
L1I
FPUs
IF
BBST
Control
BBSVU
11
Signature Generation
  • MISR (Multiple input signature register)
  • Linear feedback coefficients based on the
    processor secret key

12
Phases of the Security Mechanism
  • Compilation and program installation
  • Signature table (BBST_M) is generated, encrypted
    and appended to the program binary
  • Program loading in the memory
  • BBST_M is decrypted, loaded in the memory
  • Program execution
  • Signature of each last basic block with cache
    miss is verified
  • If no match, generate trap to OS kill process

13
Program Execution
14
The Framework Potential
  • 32-bit MISR
  • I-cache 4 ways, 128 sets, 64B line
  • BBST 4 ways, 4B line, 128/256 sets
  • LRU replacement
  • Traces of SPEC CPU2000 benchmarks for Alpha
    architecture
  • F2B, M2B segments
  • 10 integer (CINT), 11 floating-point benchmarks
    (CFP)

15
The Framework Potential
16
The Framework Potential
17
The Framework Potential
18
The Framework Potential
  • Also measured
  • the number of instruction cache misses
  • the number of BBST accesses
  • The number of BBST misses very small
  • Trusted instruction overheadwill not
    significantly hurt performance

19
Conclusion
  • Proposed a framework for trusted instruction
    execution,evaluated potential
  • Promises to be faster than SPEF, with additional
    hardware resources and BBST appended to program
    binary
  • Future work
  • asses different BBST organizations
  • preload BBST?
  • simulate execution time
  • evaluate an alternative implementationsignature
    embedded in the code
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2025 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Exploiting Instruction Streams To Prevent Intrusion" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!