Title :
Improving Security Assurance of Embedded Systems through Systemic Dissolution of Architected Resources
Author :
Wilder, Michael D. ; Rinker, Robert E.
Author_Institution :
Univ. of Idaho, Moscow, ID, USA
Abstract :
Resource constraints imposed upon embedded systems make it particularly challenging to provide high levels of security assurance without degrading their performance. We present a method for increasing security assurance of embedded systems without reducing system performance. This method employs a systemic dissolution of architected resources that reduces the attack surface of embedded systems. We show that attacks which insert foreign instructions or modify existing instructions are impossible against systems hardened using this method. We further show that systems hardened using this method are difficult if not impossible to compromise using attacks that re-use existing program logic by diverting control flow, such as return-into-libc. We discuss advantages and shortcomings of this method, and describe a prototype that applies the method to programs targeted for the Intel 8051.
Keywords :
embedded systems; multiprocessing systems; security of data; Intel 8051; architected resources dissolution; control flow; embedded systems; program logic; security assurance; Embedded systems; Field programmable gate arrays; Prototypes; Read only memory; Registers; Security; Transforms; automatic synthesis; computer security; embedded systems; high-level synthesis;
Conference_Titel :
System Science (HICSS), 2012 45th Hawaii International Conference on
Conference_Location :
Maui, HI
Print_ISBN :
978-1-4577-1925-7
Electronic_ISBN :
1530-1605
DOI :
10.1109/HICSS.2012.318
