Title :
Practical and Secure Software-Based Attestation
Author :
Jakobsson, Markus ; Johansson, Karl-Anders
Author_Institution :
FatSkunk, Mountain View, CA, USA
Abstract :
Software-based attestation can be used for guaranteed detection of any active malware on a device. This promises a significant advance in the battle against malware, including mobile malware. However, most software based attestation methods are either heuristic or unsuitable for mobile computing - and often both. One recent software-based attestation method uses so-called memory-printing to produce a software-based attestation technique with provable properties. We describe a novel memory-printing algorithm that improves on that work by being more than an order of magnitude faster, while avoiding commonly used and questionable security assumptions. This results in a truly practical and arguable secure solution - taking less than 3 seconds on a 600 MHz processor with 256 MB RAM. Our work finds applications to malware defense and trusted computing in general, and mobile malware defense in particular.
Keywords :
invasive software; mobile computing; storage management; memory-printing algorithm; mobile computing; mobile malware defense; software-based attestation technique; trusted computing; Iron; Kernel; Malware; Performance evaluation; Random access memory; Registers; detection; handsets; malware; software;
Conference_Titel :
Lightweight Security & Privacy: Devices, Protocols and Applications (LightSec), 2011 Workshop on
Conference_Location :
Istanbul
Print_ISBN :
978-1-61284-170-0
Electronic_ISBN :
978-0-7695-4340-6
DOI :
10.1109/LightSec.2011.8
