sok introspections on trust and the semantic gap
play

SoK:%Introspections%on%Trust%and% the%Semantic%Gap - PowerPoint PPT Presentation

Dec 26, 2023 •757 likes •1.09k views

SoK:%Introspections%on%Trust%and% the%Semantic%Gap Presented(by(Zhenyu Ning 1 Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 2 Contents

  1. SoK:%Introspections%on%Trust%and% the%Semantic%Gap Presented(by(Zhenyu Ning 1

  2. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 2

  3. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 3

  4. VMI • Virtual Machine Introspection • Memory,(disk,(network(traffic • Smaller(TCB(and(less(CVEs • A monitor tracks(the(behavior(of(guest(OS. • Hypervisor,(sibling(VM,(guest(OS,(hardware 4

  5. Semantic Gap • The(gap(between(highQlevel(expressions(and(hardwareQlevel( abstractions. 5

  6. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 6

  7. Bridging%the%gap • Learning(and(reconstruction • Code(implanting • Process(Outgrafting 7

  8. Learning%and%reconstruction • Learning(phase • Generate(data(structure(signature • Search(phase • Identify(the(instance(of(data(structure(in(memory 8

  9. Hand=craft%data%structure%signature • Based(on(expert(knowledge(of(the(internal(workings(of(an(OS. • Example:(find(“init_task”,(then(go(through(the(linked(list. • Disadvantage:(Inflexible 9

  10. Source%code%analysis • Based(on(analysis(of(source(code. • Leverage(static(analysis(to(generate(a(graph(of(kernel(data( structures. • Challenge:(Invalid(pointer,(object(pools. 10

  11. Dynamic%learning • Based(on(dynamic(analysis(of(an(OS(instance. • Training(on(a(trusted(OS(instance(by(manipulate(a(data( structure(of(interest. • Robust(signature. 11

  12. Search%phase • Linearly)Scanning • Access(more(memory • Immune(to(broken(pointers • Pointer)traversing) • Traverse(less(total(memory • Suffer(from(cyclic(and(invalid(pointers • Large)overhead)leads)to)low)frequency. 12

  13. Code%implanting • Implanting(the(monitor(code(into(guest(OS. • Implant(process • Implant(function • Challenge:(Integrity(of(implanted(code(and(guest(kernel. 13

  14. Process outgrafting • Monitor(a(untrusted(VM(from(another(sibling trusted(VM. • The(trusted(VM(has(some(visibility(into(the(kernel(memory(of( untrusted(VM. • Using(existing(code(and(readQonly(heap 14

  15. Kernel%executable%integrity • W(XOR(X(mechanism Control(Flow(Integrity(CFI) • Whitelist • Protect(object(hooks 15

  16. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 16

  17. Prevention%&%detection • Detection • Identify(violation(of(security(policy • Issue:(recovery • Prevention • Detection(and(interposition • Issue:(performance(overhead 17

  18. Asynchronous%&%synchronous • Synchronous • Prevention(system,(high(overhead • Asynchronous • Introspect(into(a(snapshot(of(memory • TradeQoffs(across(performance(&(risk • Assumption: Knowing(all(hook(location,(object(slab 18

  19. Snapshotting%&%Snooping • Snapshotting • Use(PCI(device(to(take(RAM(snapshots • Together(with(value(of(CPU(register( • SMMQbased(solution • Suffer(from(DOS(attack 19

  20. Snapshotting%&%Snooping • Snooping • Lightweight(hardware • Monitor(writes(to(sensitive(code(region(and(detect(updates(to( memory(from(malicious(device(or(driver(by(DMA • Use(snapshotting(device(to(check(data(structure(invariants(or(code( integrity • Do(not(use(commodity(hardware(and(only(focused(on(detection 20

  21. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 21

  22. KOH • Kernel(Object(Hooking(KOH) • Modify(function(pointers(in(kernel(text(or(data(section • Example:(override(readdir() • Text(section(hook( • W(XOR(X(mechanism • Data(section(hook • Move(hooks(or(whitelist • Assumption:(benign(kernel,(ability(of(administrator 22

  23. DKOM • Dynamic(Kernel(Object(Manipulation(DKOM) • Modify(kernel(heap • Example:(remove(process(from(double(linked(list • Detect(data(structure(invariant(violation(asynchronously • Assumption • Have(found(all(securityQrelevant(data(structures • These(structures(all(have(invariants • Detector(will(win(the(race 23

  24. DKSM • Direct(Kernel(Structure(Manipulation(DKSM) • Change(interpretation(of(data(structure • Different(interpretation(between(training(and(classification • Precluded(by(a(generous(threat(model 24

  25. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 25

  26. Semantic%gap • Weak)semantic)gap • An(solved(engineering(challenge • Assume(guest(OS(is(benign(during(training(and(won’t(have(different( behavior(under(monitoring • Strong)semantic)gap • An(open(security(problem • Do(not(make(any(assumption(about(the(guest(OS 26

  27. Semantic%gap • Paraverification • Light(modification(to(guest(OS • guest(OS(provide(evidence(of(its(action(is(correct • Hardware(support( • HardwareQassisted(memory(isolation,(like(SGX • Reconstruction(from(untrusted(sources • Incrementally(training • Inconsistency(detection 27

  28. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 28

  29. Future%work • Scalability • Overhead(not(acceptable(in(multiQVM(system • Balance(of(overhead(and(risk • Privacy • evaluate(risks(of(new(side(channels 29

  30. Conclusion • Researches(should(be(refocused(on(removing(the( assumptions(of(a(guest(OS(to(reduce(the(TCB • Future(solutions(should(pay(more(attention(to( scalability(and(privacy(concerns 30

  31. Reference • Jain(B,(Baig M(B,(Zhang(D,(et(al.(Sok:(Introspections(on(trust(and(the( semantic(gap[C]//Security(and(Privacy((SP),(2014(IEEE(Symposium(on.( IEEE,(2014:(605Q620. 31

  32. Thank(you! 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Rule-Based Trust Assessment on the Semantic Web Ian Jacobi 1 , Lalana Kagal 1 , Ankesh Khandelwal

Rule-Based Trust Assessment on the Semantic Web Ian Jacobi 1 , Lalana Kagal 1 , Ankesh Khandelwal

General model AIR overview Trust on and by rules Related work, summary and future work Rule-Based Trust Assessment on the Semantic Web Ian Jacobi 1 , Lalana Kagal 1 , Ankesh Khandelwal 2 Decentralized Information Group 1 Massachussets

457 views • 33 slides
Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web companies starting & growing Siderean, SandPiper, SiberLogic, Ontology Works, Intellidimension, Intellisophic, TopQuadrant, Data Grid, Mondeca,

481 views • 23 slides
Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital

Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital

Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital Signature Data Logic Data Self- semantics + reasoning Ontology vocabulary descr. doc. relational data RDF + RDF Schema information exchange

848 views • 68 slides
What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by

What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by

What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by international standards body the World Wide Web Consortium (W3C).[1] ... By encouraging the inclusion of semantic content in web pages, the

578 views • 44 slides
Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly

Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly

SemEval 2014 Task-3 Cross-Level Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly focused on similar types of lexical items Semantic Similarity What if we have different types of inputs? CLSS:

971 views • 47 slides
Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex:

Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex:

Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex: dog, cat, lion, unannotated texts lizard, snake assignments for words. For example: blogger HUMAN sedan VEHICLE AK-47 WEAPON N best words

344 views • 8 slides
RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic

RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic

RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic Web does not mean computers are going to understand the meaning of everything on the web does mean that we can create some standards ways of

344 views • 33 slides
Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Enterprise Architecture in SOA: Coverage Models and Methodologies Going Semantic Semantic technology May 23 rd , 2005 Enterprise architecture and semantic technology Enterprise architecture maturity model Capabilities of semantic

244 views • 9 slides
FT Consultation An NHS Foundation Trust The Trust is applying to become an NHS Foundation Trust

FT Consultation An NHS Foundation Trust The Trust is applying to become an NHS Foundation Trust

FT Consultation An NHS Foundation Trust The Trust is applying to become an NHS Foundation Trust Your Local Mental Health NHS Trust Implementation of Involvement Agenda National accreditation for Memory Service Team (Bloxwich Hospital)

763 views • 14 slides
PGP web of trust Web of trust From:

PGP web of trust Web of trust From:

PGP web of trust Web of trust From: h2p://pgp.cs.uu.nl/plot/ The PGP web of trust can be viewed as a directed graph where the points are

558 views • 10 slides
Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10,

Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10,

Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10, 2016 Roadmap Semantic Analysis Semantic attachments Extended example Quantifier scope Earley Parsing and Semantics

588 views • 15 slides
Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545

Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545

Semantic Processing Semantic Representation FOPC Inference Issues Description Logics Semantic Processing Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545 Dept. of Linguistics, Indiana

585 views • 44 slides
Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of

Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of

Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of Web technologies and standards Trust Rules Proof Digital Signature Data Logic Data Self- semantics Ontology vocabulary descr. doc.

747 views • 49 slides
Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic

Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic

Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic Similarity; how similar are a pair of lexical items? Semantic Similarity Semantic Similarity Semantic Similarity Sentence level

1.42k views • 127 slides
Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun,

Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun,

Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun, Xianpei Han Institute of Software, Chinese Academy of Sciences Task: Semantic Parsing Translate natural language sentences to meaning

1.4k views • 82 slides
Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web?

Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web?

Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web? Technologies Systems Systems Services Infrastructures I f t t Knowledge, information, data A lot of that Introduction to the

559 views • 29 slides
Pros and cons of propositional logic Propositional logic is declarative : pieces of syntax

Pros and cons of propositional logic Propositional logic is declarative : pieces of syntax

Pros and cons of propositional logic Propositional logic is declarative : pieces of syntax correspond to facts Propositional logic allows partial/disjunctive/negated information (unlike most data structures and databases) First-order logic

279 views • 7 slides
Automated GPU Kernel Fusion with XLA EuroLLVM'19, April 8 2019 Thomas Joerg, Google Presenting

Automated GPU Kernel Fusion with XLA EuroLLVM'19, April 8 2019 Thomas Joerg, Google Presenting

Automated GPU Kernel Fusion with XLA EuroLLVM'19, April 8 2019 Thomas Joerg, Google Presenting work done by the XLA team Outline TensorFlow Kernel fusion XLA compiler Automated kernel fusion Example: ResNet block ReLu :=

715 views • 33 slides
Tree A tree consists of a set of nodes and a set of edges that connect pairs of nodes.

Tree A tree consists of a set of nodes and a set of edges that connect pairs of nodes.

Tree A tree consists of a set of nodes and a set of edges that connect pairs of nodes. Property: there is exactly one path (no more, no less) between any two nodes of the tree. A path is a connected sequence of zero or more edges.

301 views • 3 slides
My y Dig igit ital al Sib iblin ling Andy Fawkes DRAFT as of 6-Jan-20 Ove vervi view ew

My y Dig igit ital al Sib iblin ling Andy Fawkes DRAFT as of 6-Jan-20 Ove vervi view ew

IT 2 EC London 28 April 2020 My y Dig igit ital al Sib iblin ling Andy Fawkes DRAFT as of 6-Jan-20 Ove vervi view ew Digital Twins Fidelity Capability Life Cycle Digital Sibling Di Digit gital al Tw Twins

781 views • 29 slides
Set 7: Predicate logic Chapter 8 R&N ICS 271 Fall 2015 Outline New ontology

Set 7: Predicate logic Chapter 8 R&N ICS 271 Fall 2015 Outline New ontology

Set 7: Predicate logic Chapter 8 R&N ICS 271 Fall 2015 Outline New ontology objects, relations, properties, functions New Syntax Constants, predicates, properties, functions New semantics meaning of new syntax

780 views • 45 slides
Topic 19 Red Black Trees Red Black Trees "People in every direction p y No words

Topic 19 Red Black Trees Red Black Trees "People in every direction p y No words

Topic 19 Red Black Trees Red Black Trees "People in every direction p y No words exchanged No time to exchange And all the little ants are marching g Red and black antennas waving" - Ants Marching, Dave Matthew's Band

657 views • 43 slides
CSC421 Intro to Artificial Intelligence UNIT 11: First-Order Logic Assignment discussion

CSC421 Intro to Artificial Intelligence UNIT 11: First-Order Logic Assignment discussion

CSC421 Intro to Artificial Intelligence UNIT 11: First-Order Logic Assignment discussion What was the biggest challenge ? What did you learn doing it ? How could it be improved ? What did you hate about the assignment ? Was

460 views • 12 slides
Simple Proofs of Sequential Work Bram Cohen Krzysztof Pietrzak Eurocrypt 2018, Tel Aviv, May 1st

Simple Proofs of Sequential Work Bram Cohen Krzysztof Pietrzak Eurocrypt 2018, Tel Aviv, May 1st

Simple Proofs of Sequential Work Bram Cohen Krzysztof Pietrzak Eurocrypt 2018, Tel Aviv, May 1st 2018 Outline What Proofs of Sequential Work How Sketch of Construction & Proof Why Sustainable Blockchains Outline What

812 views • 60 slides

More recommend