Presentation is loading. Please wait.

Presentation is loading. Please wait.

Software-based Code Attestation for Wireless Sensors.

Published byGordon Ryan Modified over 9 years ago

Similar presentations

Presentation on theme: "Software-based Code Attestation for Wireless Sensors."— Presentation transcript:

1 Software-based Code Attestation for Wireless Sensors

2 Introduction Securing sensors in critical applications is important Compromise of a sensor can enable attacker to inject false sensing information Compromise of shared keys can enable attacker to compromise secure communications 2

3 Attestation How to detect compromise? Attest! Ensure that the contents of the memory are unchanged – Detects sensor compromise that involves a modification of the program memory – Compute a checksum of the memory contents 3

4 Naïve Attestation Model Attestation routine reads memory and computes a checksum Attacker must offset memory reads to avoid detection – Offsets incur measurable delay in execution – Attester can measure execution time to detect compromise 4 MalcodeAttest Unmodified Copy Of Original Program Memory of Sensor

5 Limitations Suitable for directly connected devices – Slight execution delays can be accurately measured 5

6 Remote Attestation How can we adapt the attestation model to work in a remote setting? Prevent attacker from analyzing attestation code offline – Send the attestation routine to the sensor – Make it different each time Prevent attacker from modifying attestation code – Use techniques to make it difficult to statically analyze 6

7 Why Remote Attestation? Is remote attestation really necessary? Physical access to the sensors is not always feasible – Military setting - sensors are located in hostile, enemy territory – Building monitoring - sensors could be located in dangerous/inaccessible locations 7

8 Building Blocks Randomization Encryption Self-Modifying Code Obfuscation – Opaque Predicates/Pointer Aliasing – Junk Instructions 8

9 Opaque Predicates Conditions that always evaluate to true or always evaluate to false – Evaluation result is not obvious from static analysis Can be formed through pointer aliasing – known to be an NP-hard problem 9

10 Junk Instructions Full or partial machine code instructions – Full - distract analysis – Partial - confuse analysis 10

11 Attestation Protocol 11 Compare Results Measure Response Time Generate Attestation Routine Precompute Result Base Attestation Routine Checksum Result Execute Attestation Routine Sensor

12 Attestation Routine Overview Randomly step through program memory, adding values to the checksum result Loop repeats O(n log n) times to ensure complete coverage of the memory Routine will incorporate the building blocks to prevent attacks on the routine itself 12

13 New attacks: – Return oriented programming: does not need to inject malicious code – Manipulate the program stack – Completeness in the libc library – Not complete for sensor OS, but prototype has been demonstrated 13

Download ppt "Software-based Code Attestation for Wireless Sensors."

Similar presentations

Intrusion Detection Systems (I) CS 6262 Fall 02. Definitions Intrusion Intrusion A set of actions aimed to compromise the security goals, namely A set.

Intrusion Detection Systems (I) CS 6262 Fall 02. Definitions Intrusion Intrusion A set of actions aimed to compromise the security goals, namely A set.
Using Instruction Block Signatures to Counter Code Injection Attacks Milena Milenković, Aleksandar Milenković, Emil Jovanov The University of Alabama in.

Using Instruction Block Signatures to Counter Code Injection Attacks Milena Milenković, Aleksandar Milenković, Emil Jovanov The University of Alabama in.
GRS: The Green, Reliability, and Security of Emerging Machine to Machine Communications Rongxing Lu, Xu Li, Xiaohui Liang, Xuemin (Sherman) Shen, and Xiaodong.

GRS: The Green, Reliability, and Security of Emerging Machine to Machine Communications Rongxing Lu, Xu Li, Xiaohui Liang, Xuemin (Sherman) Shen, and Xiaodong.
Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.

Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
Operating Systems Security 1. The Boot Sequence The action of loading an operating system into memory from a powered-off state is known as booting or.

Operating Systems Security 1. The Boot Sequence The action of loading an operating system into memory from a powered-off state is known as booting or.
Dr. XiaoFeng Wang Spring 2006 Packet Vaccine: Black-box Exploit Detection and Signature Generation XiaoFeng Wang, Zhuowei Li Jun Xu, Mike Reiter Chongkyung.

Dr. XiaoFeng Wang Spring 2006 Packet Vaccine: Black-box Exploit Detection and Signature Generation XiaoFeng Wang, Zhuowei Li Jun Xu, Mike Reiter Chongkyung.
The Sybil Attack in Sensor Networks: Analysis & Defenses J. Newsome, E. Shi, D. Song and A. Perrig IPSN’04.

The Sybil Attack in Sensor Networks: Analysis & Defenses J. Newsome, E. Shi, D. Song and A. Perrig IPSN’04.
1 Detection of Injected, Dynamically Generated, and Obfuscated Malicious Code (DOME) Subha Ramanathan & Arun Krishnamurthy Nov 15, 2005.

1 Detection of Injected, Dynamically Generated, and Obfuscated Malicious Code (DOME) Subha Ramanathan & Arun Krishnamurthy Nov 15, 2005.
Preventing Reverse Engineering by Obfuscating Bharath Kumar.

Preventing Reverse Engineering by Obfuscating Bharath Kumar.
Linear Obfuscation to Combat Symbolic Execution Zhi Wang 1, Jiang Ming 2, Chunfu Jia 1 and Debin Gao 3 1 Nankai University 2 Pennsylvania State University.

Linear Obfuscation to Combat Symbolic Execution Zhi Wang 1, Jiang Ming 2, Chunfu Jia 1 and Debin Gao 3 1 Nankai University 2 Pennsylvania State University.
Chapter 5 Anti-Anti-Virus. Anti-Anti-Virus  All viruses self-replicate  Anti-anti-virus means it’s “openly hostile” to AV  Anti-anti-virus techniques?

Chapter 5 Anti-Anti-Virus. Anti-Anti-Virus  All viruses self-replicate  Anti-anti-virus means it’s “openly hostile” to AV  Anti-anti-virus techniques?
Breno de MedeirosFlorida State University Fall 2005 Buffer overflow and stack smashing attacks Principles of application software security.

Breno de MedeirosFlorida State University Fall 2005 Buffer overflow and stack smashing attacks Principles of application software security.
Remote Software-based Attestation for Wireless Sensors July 13, 2005 Mark Shaneck, Karthikeyan Mahadevan Vishal Kher, Yongdae Kim Department of Computer.

Remote Software-based Attestation for Wireless Sensors July 13, 2005 Mark Shaneck, Karthikeyan Mahadevan Vishal Kher, Yongdae Kim Department of Computer.
Web Defacement Anh Nguyen May 6 th, 2010. Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.

Web Defacement Anh Nguyen May 6 th, Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.
Virtual Machine Security Design of Secure Operating Systems Summer 2012 Presented By: Musaad Alzahrani.

Virtual Machine Security Design of Secure Operating Systems Summer 2012 Presented By: Musaad Alzahrani.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Outcomes What is RPC? The difference between conventional procedure call and RPC? Understand the function of client and server stubs How many steps could.

Outcomes What is RPC? The difference between conventional procedure call and RPC? Understand the function of client and server stubs How many steps could.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.
Towards Application Security On Untrusted OS

Towards Application Security On Untrusted OS

Similar presentations

Ads by Google