TY - GEN
T1 - An Architectural-Enhanced Secure Embedded System with a Novel Hybrid Search Scheme
AU - Wang, Weike
AU - Liu, Muyang
AU - Du, Pei
AU - Zhao, Zongmin
AU - Tian, Yuntong
AU - Hao, Qiang
AU - Wang, Xiang
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2018/6/21
Y1 - 2018/6/21
N2 - Embedded systems are vulnerable to various kinds of attacks when they are in execution. Advanced attacks, such as buffer overflow, are able to inject malicious code at runtime. Besides, physical attacks are also becoming more common. This paper presents a new hardware-assisted architecture to validate the execution of the program which is reliable, effective and of low overhead. A specified tool is developed to collect software properties of each basic block from binary code automatically. At runtime, the proposed scheme checks whether the executing code conforms to the permissible behavior and triggers appropriate response mechanisms when illegal actions are detected. This architecture won't change the program and has no restriction on the developer. The performance overhead of the architecture is mostly less than 1% according to the selected benchmarks and the hybrid search scheme can reduce the indexing overhead to approximately 30% of that of binary search.
AB - Embedded systems are vulnerable to various kinds of attacks when they are in execution. Advanced attacks, such as buffer overflow, are able to inject malicious code at runtime. Besides, physical attacks are also becoming more common. This paper presents a new hardware-assisted architecture to validate the execution of the program which is reliable, effective and of low overhead. A specified tool is developed to collect software properties of each basic block from binary code automatically. At runtime, the proposed scheme checks whether the executing code conforms to the permissible behavior and triggers appropriate response mechanisms when illegal actions are detected. This architecture won't change the program and has no restriction on the developer. The performance overhead of the architecture is mostly less than 1% according to the selected benchmarks and the hybrid search scheme can reduce the indexing overhead to approximately 30% of that of binary search.
KW - architectural-enhanced
KW - hybrid search scheme
KW - instruction stream integrity
KW - secure embedded system
UR - https://www.scopus.com/pages/publications/85050538615
U2 - 10.1109/ICSSA.2017.14
DO - 10.1109/ICSSA.2017.14
M3 - 会议稿件
AN - SCOPUS:85050538615
T3 - Proceedings - 2017 International Conference on Software Security and Assurance, ICSSA 2017
SP - 116
EP - 120
BT - Proceedings - 2017 International Conference on Software Security and Assurance, ICSSA 2017
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 3rd International Conference on Software Security and Assurance, ICSSA 2017
Y2 - 24 July 2017 through 25 July 2017
ER -