flicker flicker minimal tcb code execution minimal tcb
play

Flicker: Flicker: Minimal TCB Code Execution Minimal TCB Code - PowerPoint PPT Presentation

Mar 21, 2023 •247 likes •748 views

Flicker: Flicker: Minimal TCB Code Execution Minimal TCB Code Execution Jonathan M. McCune Carnegie Mellon University March 25, 2008 Bryan Parno, Arvind Seshadri Adrian Perrig, Michael Reiter 1 Password Reuse People often use 1

  1. Flicker: Flicker: Minimal TCB Code Execution Minimal TCB Code Execution Jonathan M. McCune Carnegie Mellon University March 25, 2008 Bryan Parno, Arvind Seshadri Adrian Perrig, Michael Reiter 1

  2. Password Reuse • People often use 1 password for 2+ websites • Banking, social networking, file sharing, … P A S S W O R D 2

  3. Password Exposure • Password provided to compromised web server P A S S W O R D My- hobby .com www.myhobby.com is compromised! 3

  4. Password Verification • What if… – A compromised OS cannot learn the password – Only essential code can access password • Decrypt SSL traffic • Salt and hash password • Compare with stored hash • Output MATCH or FAILURE – Can remotely verify this is so • Requires strong system security • What about zero knowledge protocols? – A viable alternative for passwords – Our techniques are more general • Password verification is just an example 4

  5. Outline 1. Existing approaches to system security 2. Remote attestation and verification 3. Static root of trust for measurement 4. Dynamic root of trust for measurement 5. Flicker: Minimal TCB Code Execution • Optional – Example: IBM Integrity Measurement Arch. – Specifics of AMD SVM / Intel TXT 5

  6. Some Current Approaches • Program code in ROM • Secure boot • Virtual-machine-based isolation • Evaluation metric: size of Trusted Computing Base (TCB) App1 App2 App3 Operating System Hardware 6

  7. Security Properties to Consider • How can we trust operations that our devices perform? • How can we trust App1? • What if App2 has a security vulnerability? • What if Operating System has a security vulnerability? App1 App2 App3 Operating System Hardware 7

  8. Program Code in ROM • Advantages – Simplicity – Adversary cannot inject any additional software • Disadvantages – Cannot update software (without exchanging ROM) – Adversary can still use control-flow attack – Entire system is in TCB, no isolation A1 A2 A3 Operating System • Verdict Hardware – Impractical for current systems – Code updates are critical • Bug fixes • New features 8

  9. Secure Boot • Boot process uses signature chain – BIOS verifies signature on boot loader – Boot loader verifies signature on OS, ... • Advantages – Only approved software can be loaded • Assuming no vulnerabilities • Disadvantages – Adversary only needs to compromise singe component – Entire system is in TCB, no isolation – Not all software is commercial A1 A2 A3 • Verdict Operating System Hardware – Entire system is still part of TCB – Relatively weak security guarantee 9

  10. Virtual-machine-based Isolation • Approach: Isolate applications by executing them inside different Virtual Machines • Advantages A1 A2 A3 – Smaller TCB OS OS OS – Isolation between applications VMM Hardware • Disadvantages – VMM is still large and part of TCB – Relatively complex, not suitable for average user • Verdict: Smaller TCB, step in right direction 10

  11. Outline 1. Existing approaches to system security 2. Remote attestation and verification 3. Static root of trust for measurement 4. Dynamic root of trust for measurement 5. Minimal TCB Code Execution • Optional – Example: IBM Integrity Measurement Arch. – Specifics of AMD SVM / Intel TXT 11

  12. Remote Verification? • Desirable property: Remotely verify trustworthy device operation A1 A2 A3 Everything OK? V Operating System Hardware Yes/No • Presented approaches not verifiable – Higher resilience to attacks – Remote verifier obtains no additional assurance 12

  13. Remote Attestation • Attestation enables verifier to establish trust in untrusted device – Attestation tells verifier what code is executing on device – If intended code is executing on untrusted device, verifier can trust its operation A1 A2 A3 What code is executing? V Operating System Hardware Hash(Code) Verifier Untrusted Device 13

  14. Outline 1. Existing approaches to system security 2. Remote attestation and verification 3. Static root of trust for measurement 4. Dynamic root of trust for measurement 5. Flicker: Minimal TCB Code Execution • Optional – Example: IBM Integrity Measurement Arch. – Specifics of AMD SVM / Intel TXT 14

  15. Hardware-based Attestation • Leverages hardware support for attestation • Trusted Platform Module (TPM) chip – Already included in many platforms – Cost per chip less than $10 • Modern microprocessors provide special instructions that interact with TPM chip – AMD SVM: SKINIT instruction – Intel TXT/LT: GETSEC[SENTER] instruction 15

  16. Trusted Computing Group (TCG) • Open organization to “develop, define, and promote open standards for hardware-enabled trusted computing and security technologies.” • These secure platform primitives include – Platform integrity measurements – Measurement attestation – Sealed storage • Can enable – Trusted boot (not secure boot) – Attestation • Goals: – Ensure absence of malware – Detect spyware, viruses, worms, … 16

  17. TCG Trusted Platform Module (TPM) Non-Volatile Platform Platform Non-Volatile Storage Configuration Configuration Storage (EK, AIK, SRK) Register (PCR) Register (PCR) (EK, AIK, SRK) LPC bus LPC bus I/O I/O Random Random Secure Secure Crypto Key Key Crypto Number Number Hash Hash RSA Generation Generation RSA Generator Generator SHA-1 SHA-1 DIP Packaging or integrated into SuperIO 17

  18. Basic TPM Functions • PCRs store integrity measurement chain – PCR new = SHA-1(PCR old ||measurement) • Remote attestation (PCRs + AIK) – Attestation Identity Keys (AIKs) for signing PCRs – Attest to value of integrity measurements to remote party • Sealed storage (PCRs + SRK) – Protected storage + unlock state under a particular integrity measurement (data portability concern) 18

  19. TCG-Style Attestation Module 1 Module 1 App 1 App 1 Module 2 Module 2 App 2 App 2 conf conf Boot Boot BIOS Apps Loader Loader OS Kernel OS Kernel Apps BIOS PCRs Hardware TPM AIK -1 Software 19

  20. TCG-Style Attestation Challenger Host platform What code are you running? { PCRs } AIK 1 � 20

  21. Optional • IBM’s Integrity Measurement Architecture • Works for Linux 21

  22. Shortcomings of TCG-style Attestation • Static root of trust for measurement ( reboot ) • Coarse-grained, measures entire system – Requires hundreds of integrity measurements just to boot – Every host is different • firmware versions, drivers, patches, apps, spyware, … – What does a PCR mean in this context? – TCB includes entire system! • Integrity measurements are done at load-time not at run-time – Time-of-check-time-of-use (TOCTOU) problem – Cannot detect any dynamic attacks! A1 A2 A3 – No guarantee of execution Operating System Hardware TPM 22

  23. Outline 1. Existing approaches to system security 2. Remote attestation and verification 3. Static root of trust for measurement 4. Dynamic root of trust for measurement 5. Flicker: Minimal TCB Code Execution • Optional – Example: IBM Integrity Measurement Arch. – Specifics of AMD SVM / Intel TXT 23

  24. Dynamic Root of Trust for Measurement aka: Late Launch • Involves both CPU and TPM v1.2 • Security properties similar to reboot – Without a reboot! – Removes many things from TCB • BIOS, boot loader, DMA-enabled devices, … • Long-running OS and Apps if done right • When combined with virtualization – VMM can be measured (MVMM) • Uptimes measured in years – Integrity of loaded code can be attested – Untrusted legacy OS can coexist with trusted software • Allows introduction of new, higher-assurance software without breaking existing systems 24

  25. AMD/Intel Late Launch Extensions • AMD: Secure Virtual Machine (SVM) • Intel: Trusted eXecution Technology (TXT) – Formerly LaGrande Technology (LT) • Similarities: – Late launch of a measured block of code – Hardware support for virtualization • Differences: – AMD provides measured environment only – Intel adds authenticated code capabilities • The system’s chipset contains a public key to verify signed code 25

  26. AMD Secure Virtual Machine • Virtualization support – DMA protection for memory – Intercept selected guest instructions / events – Much more… • Late launch with support for attestation – New instruction: SKINIT (Secure Kernel Init) – Requires appropriate platform support (e.g., TPM 1.2) – Allows verifiable startup of trusted software • Such as a VMM • Based on hash comparison 26

  27. SKINIT (Secure Kernel Init) • Accepts address of Secure Loader Block (SLB) – Memory region up to 64 KB • SKINIT executes atomically – Sets CPU state similar to INIT (soft reset) – Disables interrupts – Enables DMA protection for entire 64 KB SLB – Causes TPM to reset dynamic PCRs to 0 – Sends SLB contents to TPM – TPM hashes SLB contents and extends PCR 17 – Begins executing SLB 27

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

FLICKER CONTROL FOR THE ESRF ACCELERATOR In collaboration with ARGENTINA FLICKER CONTROL FOR

FLICKER CONTROL FOR THE ESRF ACCELERATOR In collaboration with ARGENTINA FLICKER CONTROL FOR

FLICKER CONTROL FOR THE ESRF ACCELERATOR In collaboration with ARGENTINA FLICKER CONTROL FOR THE ESRF ACCELERATOR What is Flicker? Power quality parameter of a Point of Common Coupling (PCC). Low frequency variation of RMS value.

337 views • 18 slides
Solving the 4-Year Flicker Problem Using PQube 3 Analog Channels as a Troubleshooting Tool Bruce

Solving the 4-Year Flicker Problem Using PQube 3 Analog Channels as a Troubleshooting Tool Bruce

Solving the 4-Year Flicker Problem Using PQube 3 Analog Channels as a Troubleshooting Tool Bruce Lonie PSL European Channel Partner Symposium Prague, Czech Republic June 7-9 2018 05/06/2018 Q 1 The Home of the Flicker Problem

645 views • 26 slides
might find, and how to deal with it Michael Poplawski, Senior Lighting Engineer, PNNL Naomi J.

might find, and how to deal with it Michael Poplawski, Senior Lighting Engineer, PNNL Naomi J.

ArchLED 2011 Exploring Flicker in SSL: What you might find, and how to deal with it Michael Poplawski, Senior Lighting Engineer, PNNL Naomi J. Miller, Senior Lighting Engineer, PNNL 0 Flicker - Terminology Flicker, flutter, shimmer Repetitive

517 views • 25 slides
Module-3b: Offset and Flicker Mitigation 01 August 2018 14:29 Modules Page 1 Modules Page 2

Module-3b: Offset and Flicker Mitigation 01 August 2018 14:29 Modules Page 1 Modules Page 2

Module-3b: Offset and Flicker Mitigation 01 August 2018 14:29 Modules Page 1 Modules Page 2 Modules Page 3 If Y(f) is filtered, we get rid of flicker noise. Modules Page 4 Module-3c: Chopping Non-Idealities 06 September 2018 16:45 Open

235 views • 10 slides
Flicker: Refresh Power Reduction in DRAM Memories through Critical Data Partitioning Song Liu,

Flicker: Refresh Power Reduction in DRAM Memories through Critical Data Partitioning Song Liu,

Flicker: Refresh Power Reduction in DRAM Memories through Critical Data Partitioning Song Liu, Northwestern Univ. Karthik Pattabiraman, MSR Thomas Moscibroda, MSR Benjamin Zorn, MSR Motivation: Smart-phones Responsiveness is important

372 views • 7 slides
A toy example in Minimal Model Program In minimal model program for 3-folds, Mori connected

A toy example in Minimal Model Program In minimal model program for 3-folds, Mori connected

A toy example in Minimal Model Program In minimal model program for 3-folds, Mori connected minimal models with flops. A flop is a pair of birational proper surjections: X Y Z of 3-folds with certain properties. In particular, X and Y

321 views • 10 slides
www.tablegroup.com/hub Smart Healthy Strategy Minimal Politics Marketing Minimal

www.tablegroup.com/hub Smart Healthy Strategy Minimal Politics Marketing Minimal

www.tablegroup.com/hub Smart Healthy Strategy Minimal Politics Marketing Minimal Confusion Finance High Morale Technology High Productivity Low Turnover BUILD A CREATE COHESIVE CLARITY LEADERSHIP TEAM

240 views • 4 slides
Flicker Free Boot Seamless boot for UEFI systems Presented by Hans de Goede Red Hat Desktop

Flicker Free Boot Seamless boot for UEFI systems Presented by Hans de Goede Red Hat Desktop

Flicker Free Boot Seamless boot for UEFI systems Presented by Hans de Goede Red Hat Desktop Hardware Enablement Team This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License Topics What / why? Pre-kernel:

434 views • 16 slides
On the minimal coloring number of the minimal diagram of torus links Eri Matsudo Nihon

On the minimal coloring number of the minimal diagram of torus links Eri Matsudo Nihon

Introduction Known results Main theorem On the minimal coloring number of the minimal diagram of torus links Eri Matsudo Nihon University Graduate School of Integrated Basic Sciences Joint work with K. Ichihara (Nihon Univ.) & K.

560 views • 21 slides
Strongly minimal groups in o-minimal structures ( with P . Eleftheriou and A. Hasson ) Kobi

Strongly minimal groups in o-minimal structures ( with P . Eleftheriou and A. Hasson ) Kobi

Strongly minimal groups in o-minimal structures ( with P . Eleftheriou and A. Hasson ) Kobi Peterzil Department of Mathematics University of Haifa Model theory, combinatorics and valued fields, IHP , Paris 2018 Kobi Peterzil 1

336 views • 15 slides
Understanding Minimal Risk Richard T. Campbell University of Illinois at Chicago Why is Minimal

Understanding Minimal Risk Richard T. Campbell University of Illinois at Chicago Why is Minimal

Understanding Minimal Risk Richard T. Campbell University of Illinois at Chicago Why is Minimal Risk So Important? It is the threshold for determining level of review (Issue 8) Determines, in part, what is on list of research eligible for

689 views • 23 slides
Minimal ESP draft-mglt-lwig-minimal-esp-05 Migault, Guggemos -- IETF99 Motivations Securing m2m

Minimal ESP draft-mglt-lwig-minimal-esp-05 Migault, Guggemos -- IETF99 Motivations Securing m2m

Minimal ESP draft-mglt-lwig-minimal-esp-05 Migault, Guggemos -- IETF99 Motivations Securing m2m communications with IPsec/ESP presents significant advantages [1] especially for small devices: - Interoperability - VPN - Transport layer

413 views • 8 slides
Normal and minimal surfaces The correspondence between normal surfaces and minimal surfaces has

Normal and minimal surfaces The correspondence between normal surfaces and minimal surfaces has

Normal and minimal surfaces The correspondence between normal surfaces and minimal surfaces has more applications. It can be used to investigate classical problems in Differential Geometry. Classical Isoperimetric Inequality: A curve in R 2

1.14k views • 79 slides
Shadow Flicker Analysis Summary Pleasant Ridge Energy LLC Livingston County, Illinois November

Shadow Flicker Analysis Summary Pleasant Ridge Energy LLC Livingston County, Illinois November

PLEASANT RIDGE EXHIBIT 45 Shadow Flicker Analysis Summary Pleasant Ridge Energy LLC Livingston County, Illinois November 17, 2014 Personal Qualifications JoAnne Blank Master of Science Atmospheric and Oceanic Sciences Master of

385 views • 12 slides
Minimal Spanning Tree JohnsonBaughs Algorithms , Section 7.3 (page 284) find Minimal

Minimal Spanning Tree JohnsonBaughs Algorithms , Section 7.3 (page 284) find Minimal

Minimal Spanning Tree JohnsonBaughs Algorithms , Section 7.3 (page 284) find Minimal Spanning Tree (MST) with Prims algorithm : Six cities We want to construct a set of interconnecting roads such 1 Foxville 2 Steger that one can

216 views • 9 slides
Minimal theory of massive gravity Minimal theory of massive gravity Antonio De Felice Yukawa

Minimal theory of massive gravity Minimal theory of massive gravity Antonio De Felice Yukawa

Minimal theory of massive gravity Minimal theory of massive gravity Antonio De Felice Yukawa Institute for Theoretical Physics, YITP, Kyoto U. 2-nd APCTP-TUS Workshop Tokyo, Aug 4, 2015 [with prof. Mukohyama] Introduction dRGT theory:

645 views • 23 slides
Automatic Parallelization: Parallelism and Tiling Roshan Dathathri Department of Computer Science

Automatic Parallelization: Parallelism and Tiling Roshan Dathathri Department of Computer Science

Automatic Parallelization: Parallelism and Tiling Roshan Dathathri Department of Computer Science and Automation Indian Institute of Science roshan@csa.iisc.ernet.in June 25, 2013 Roshan Dathathri (CSA, IISc) Parallelism and Tiling June 25,

566 views • 44 slides
Broadcast Trees for Heterogeneous Platforms Olivier Beaumont, Yves Robert and Loris Marchal

Broadcast Trees for Heterogeneous Platforms Olivier Beaumont, Yves Robert and Loris Marchal

Broadcast Trees for Heterogeneous Platforms Olivier Beaumont, Yves Robert and Loris Marchal Laboratoire de lInformatique du Parall elisme Ecole Normale Sup erieure de Lyon, France Yves.Robert@ens-lyon.fr http://graal.ens-lyon.fr/

1.28k views • 92 slides
Term 2 2020 IN THE NEXT 4 LECTURES The context: distribute ributed d syst stems ms

Term 2 2020 IN THE NEXT 4 LECTURES The context: distribute ributed d syst stems ms

Algorithms for Distributed Mutual Exclusion Dr Vladimir Z. Tosic 1 Term 2 2020 IN THE NEXT 4 LECTURES The context: distribute ributed d syst stems ms using message sage passing Some common concurrency problems, clas lassica

688 views • 54 slides
Processor Architecture and Circuit Design: A Marginal Cost Analysis Omid Azizi Aqeel Mahesri,

Processor Architecture and Circuit Design: A Marginal Cost Analysis Omid Azizi Aqeel Mahesri,

Energy-Performance Trade-offs in Processor Architecture and Circuit Design: A Marginal Cost Analysis Omid Azizi Aqeel Mahesri, Ben Lee, Sanjay Patel, Mark Horowitz Stanford University, UIUC ISCA 2010 June 21, 2010 The Power Problem

760 views • 50 slides
Introduction to Verbs M&R 8789, 127, 195205 ENG240Y Old English / Mon 27 Sep 2010

Introduction to Verbs M&R 8789, 127, 195205 ENG240Y Old English / Mon 27 Sep 2010

Introduction to Verbs M&R 8789, 127, 195205 ENG240Y Old English / Mon 27 Sep 2010 Verb classes Strong: form their preterites and past participles using vowel gradation: singan > sang > sungon > sungen Weak: form

522 views • 11 slides
Investor Update 4 th Quarter 2016 February 23, 2017 Disclaimer This presentation contains

Investor Update 4 th Quarter 2016 February 23, 2017 Disclaimer This presentation contains

Investor Update 4 th Quarter 2016 February 23, 2017 Disclaimer This presentation contains forward-looking information and forward-looking statements (hereinafter collectively referred to as forward - looking statements), as defined under

542 views • 18 slides
Authors:

Authors:

Authors: Rodrigo Fonseca, Omprakash Gnawali, Kyle Jamieson, Sukun Kim, Philip Levis and Alec Woo Presenter: Zoltn Kincses

366 views • 19 slides
Meaning as Sense (Frege 1892) The meaning of an expression is its sense , an abstract object that

Meaning as Sense (Frege 1892) The meaning of an expression is its sense , an abstract object that

Meaning as Sense (Frege 1892) The meaning of an expression is its sense , an abstract object that determines its reference. Senses are functions that determine reference. 1 / 39 Functions: a Reminder A function is an abstract (mathematical)

421 views • 39 slides

More recommend