Title :
Kernel and Application Integrity Assurance: Ensuring Freedom from Rootkits and Malware in a Computer System
Author :
Wang, Lifu ; Dasgupta, Partha
Author_Institution :
Dept. of Comput. Sci. & Eng., Arizona State Univ., Tempe, AZ
Abstract :
Malware and rootkits are serious security vulnerabilities, and they can be designed to be resistant to anti-viral software, or even totally undetectable. This paper described a hierarchical trust management scheme, where the root of trust is in a non-tamperable hardware co-processor on a PCI bus. The hardware checks a part of the OS kernel for integrity which in turn checks other parts till we ensure the entire system is free of rootkits and viruses. Our system can detect illegal modifications to kernel, loadable kernel modules and user applications. It also provides a secure communication line for user interaction to enable legal software updates.
Keywords :
coprocessors; hardware-software codesign; invasive software; operating system kernels; peripheral interfaces; program verification; PCI bus; antiviral software; application integrity assurance; computer system; hardware-software codesign; hierarchical trust management scheme; legal software update; malware security vulnerability; nontamperable hardware co-processor; operating system kernel; rootkits security vulnerability; secure communication line; user interaction; Application software; Communication system security; Computer science; Computer security; Hardware; Information security; Internet; Kernel; Law; Legal factors;
Conference_Titel :
Advanced Information Networking and Applications Workshops, 2007, AINAW '07. 21st International Conference on
Conference_Location :
Niagara Falls, Ont.
Print_ISBN :
978-0-7695-2847-2
DOI :
10.1109/AINAW.2007.217
