Title :
Formal Analysis of a Response Mechanism for TCG TOCTOU Attacks
Author :
Xiaolin Chang ; Bin Xing ; Ying Qin
Author_Institution :
Sch. of Comput. & Inf. Technol., Beijing JiaoTong Univ., Beijing, China
Abstract :
LWRM was a method for defeating TCG TOCTOU attacks with less overhead during the normal system execution. However, its security capability was evaluated only through experiments. The uncertainty in real experiments may hide the design-level errors. In this paper we explore applying model checking based formal verification techniques to verify whether LWRM can achieve the declared security properties. We first propose a method of modeling LWRM, a kernel-space mechanism, in PROMELA language. Then we detect the design-level vulnerabilities by using SPIN. At last we verify our analysis via experiments and present the challenges to mitigate the vulnerabilities.
Keywords :
formal verification; security of data; trusted computing; uncertainty handling; virtual machines; LWRM; PROMELA language; SPIN; TCG TOCTOU attack; design-level error; design-level vulnerability; formal analysis; formal verification; kernel-space mechanism; model checking; response mechanism; security capability; trusted virtual machine; uncertainty handling; vulnerability mitigation; Educational institutions; Formal verification; Kernel; Security; Virtual machine monitors; Virtual machining; SPIN; TOCTOU attacks; kernel rootkit; model checking; trusted computing; virtual machine;
Conference_Titel :
Multimedia Information Networking and Security (MINES), 2012 Fourth International Conference on
Conference_Location :
Nanjing
Print_ISBN :
978-1-4673-3093-0
DOI :
10.1109/MINES.2012.116
