temporal consistency of integrity ensuring computations
play

Temporal Consistency of Integrity-Ensuring Computations and - PowerPoint PPT Presentation

Dec 14, 2023 •29 likes •409 views

Temporal Consistency of Integrity-Ensuring Computations and Applications to Embedded Systems Security Karim Eldefrawy Xavier Carpent Norrathep (Oak) Rattanavipanon Gene Tsudik University of California, Irvine SRI International Agenda

  1. Temporal Consistency of Integrity-Ensuring Computations and Applications to Embedded Systems Security Karim Eldefrawy Xavier Carpent Norrathep (Oak) Rattanavipanon Gene Tsudik University of California, Irvine SRI International

  2. Agenda • Problem Statement • Remote Attestation • Temporal Consistency: Definition & Motivation • Temporal Consistency Methods • Implementation and Experiments • Conclusions + Future Work 2 June 5, 2018 AsiaCCS'18

  3. Problem Statement June 5, 2018 AsiaCCS'18 3

  4. Integrity-Ensuring Computation Integrity-ensurin g function ( F ) Output Input • Output can be used to validate integrity of input data • Examples of F : cryptographic hash functions, message authentication codes (MAC) 4 June 5, 2018 AsiaCCS'18

  5. Integrity-Ensuring Computation Output must be temporally Computation on large input consistent : data: ❖ Must faithfully reflect exact ❖ Not instantaneous; input state of all of input data at may change while some point (or interval) in computation takes place time 5 June 5, 2018 AsiaCCS'18

  6. Integrity-Ensuring Computation Sender Receiver ✓ =? (1) F F (2) ✘ =? F F Changes (red dots) in input happen in middle of F 6 June 5, 2018 AsiaCCS'18

  7. Integrity-Ensuring Computation Sender Receiver ✓ =? (1) F F = (2) F F Never existed as a whole and might be non-sensical 7 June 5, 2018 AsiaCCS'18

  8. Integrity-Ensuring Computation Output must be temporally consistent : Computation on large input data: ❖ Must faithfully reflect exact state of all ❖ Not instantaneous; input may change of input data at some point (or while computation takes place interval) in time ฀ Atomic computation of F might be ฀ Atomicity of computation of F impractical and/or unsafe guarantees temporal consistency (assume singe CPU) Especially, when performed on simple embedded (IoT) devices with safety-critical applications. Use-case: Remote Attestation 8 June 5, 2018 AsiaCCS'18

  9. Overview of Remote Attestation 9 June 5, 2018 AsiaCCS'18

  10. Remote Attestation (RA) • Security service for remotely assessing integrity of firmware/software in embedded devices • Verifier – trusted entity • Prover – potentially infected remote embedded device Verifier Prover Integrity-ensuring function: (H)MAC or signature (1) Challenge (2) Measure memory (3) Response (4) Verify response and determine presence of malware on Prover 10 June 5, 2018 AsiaCCS'18

  11. Example of RA for Embedded Devices SMART [NDSS’12,DATE’14] • HW/SW co-design for RA targeting micro-controller unit (MCU) • Minimal change in MCU Property HW/SW Immutability ROM Exclusive Access to K MCU Access Control No Leak Static Analysis Controlled MCU Access Control Invocation Uninterruptibility Disabled Interrupts 11 June 5, 2018 AsiaCCS'18

  12. Example of RA for Embedded Devices SMART [NDSS’12,DATE’14] • HW/SW co-design for RA targeting micro-controller unit (MCU) • Minimal change in MCU Temporal consistency is achieved via atomicity but … Property HW/SW Immutability ROM … Atomicity makes SMART Exclusive Access to K MCU Access Control impractical for safety-critical devices No Leak Static Analysis MCU Access Control Atomicity Disabled Interrupts 12 June 5, 2018 AsiaCCS'18

  13. Example of RA for Embedded Devices SMART [NDSS’12,DATE’14] TrustLite [EuroSys’14] • HW/SW co-design for RA targeting • Allow secure interrupt during micro-controller unit (MCU) attestation • Minimal change in MCU • Use execution-aware memory Temporal consistency is achieved via protection unit to enforce access atomicity but … control Property HW/SW Property HW/SW Immutability ROM Immutability ROM … Atomicity makes SMART Exclusive Access to MPU Exclusive Access to K MCU Access Control impractical for safety-critical devices K No Leak Static Analysis No Leak CPU Exception Engine MCU Access Control Controlled CPU Exception Engine + Atomicity Invocation OS Disabled Interrupts Secure Interrupts CPU Exception Engine 13 June 5, 2018 AsiaCCS'18

  14. Example of RA for Embedded Devices SMART [NDSS’12,DATE’14] TrustLite [EuroSys’14] • HW/SW co-design for RA targeting • Allow secure interrupt during micro-controller unit (MCU) attestation Allowing attestation to be • Minimal change in MCU • Use execution-aware memory Temporal consistency is achieved via interruptible helps with protection unit to enforce access atomicity but … safety-critical devices but … control Property HW/SW Property HW/SW Our goal: resolve this conflict Immutability ROM Immutability ROM … Atomicity makes SMART … Temporal consistency may not be Exclusive Access to MPU Exclusive Access to K MCU Access Control impractical for safety-critical devices achieved in TrustLite K No Leak Static Analysis No Leak CPU Exception Engine MCU Access Control Controlled CPU Exception Engine + Atomicity Invocation OS Disabled Interrupts Secure Interrupts CPU Exception Engine 14 June 5, 2018 AsiaCCS'18

  15. Modeling Temporal Consistency in Remote Attestation

  16. Modeling Temporal Consistency in Remote Attestation F 16 June 5, 2018 AsiaCCS'18

  17. Modeling Temporal Consistency in Remote Attestation F • Block size of F = memory block size, e.g., 512 bits for HMAC-SHA256 • F is a sequential function: process each block once and in order • Content of blocks may change during execution of F 17 June 5, 2018 AsiaCCS'18

  18. Modeling Temporal Consistency in Remote Attestation Attestation Task write F Task A • 18 June 5, 2018 AsiaCCS'18

  19. Types of Malware Migratory Malware Transient Malware • • Ability: erase itself at any point during computation of F • Goal: escape detection R is consistent at time t and R corresponds to benign state → no malware was present at time t • Detection: R is consistent at any time • Detection: R is consistent at start of throughout computation computation 19 June 5, 2018 AsiaCCS'18

  20. Mechanisms for Ensuring Temporal Consistency June 5, 2018 AsiaCCS'18 20

  21. Strawman Approach • 21 June 5, 2018 AsiaCCS'18

  22. Mechanism 1: All-Lock • Timelin e 22 June 5, 2018 AsiaCCS'18

  23. Mechanism 2: Dec-Lock • Timelin e 23 June 5, 2018 AsiaCCS'18

  24. Mechanism 3: Inc-Lock • Timelin e 24 June 5, 2018 AsiaCCS'18

  25. Mechanism 4: Cpy-Lock • 25 June 5, 2018 AsiaCCS'18

  26. Malware Detection Summary Mechanism Migratory Malware Transient Malware No-Lock No No All-Lock Yes Yes Dec-Lock Yes Yes Inc-Lock Yes No Cpy-Lock Yes Yes June 5, 2018 AsiaCCS'18 26

  27. Inconsistency Detection • Alternative to enforce consistency • Memory is not locked during computation of F … • …But attestation task is alerted when memory is modified during computation of F • Pro: • No need to handle memory access violations • No interference with execution of other tasks • Con: • Inconsistency may always happen (even by benign task) → consistency is never achieved June 5, 2018 AsiaCCS'18 27

  28. Implementation and Evaluation

  29. Implementation • Memory locking requires hardware support • Dynamically configurable memory protection unit (MPU) → TyTan [DAC’15] • Memory management unit (MMU) → HYDRA [WiSec’17] • Implement mechanisms on HYDRA • Evaluate run-time on I.MX6-SabreLite and ODROID-XU4 I.MX6-SabreLite ODROID-XU4 29 June 5, 2018 AsiaCCS'18

  30. Primitive Operations on 16MB Memory Size Lock, unlock and copy are at least 10 times faster than MAC 30 June 5, 2018 AsiaCCS'18

  31. Primitive Operations on 16MB Memory Size Larger block size → faster lock and unlock process 31 June 5, 2018 AsiaCCS'18

  32. Mechanisms Ensuring Temporal Consistency Overhead becomes < 0.1% Overhead is at most 8% Block size = 4KB Block size = 64KB 32 June 5, 2018 AsiaCCS'18

  33. Conclusions & Future Work • Discrepancy between theoretical assumptions and implementations of cryptographic integrity-ensuring function • Input may change during computation • Output is not temporally consistent with input • Model consistency in context of remote attestation • Propose various mechanisms based on memory locking to ensure consistency • Implement and evaluate them on two commodity platforms • Future work includes: • Implementation of our mechanisms on different RA architecture (e.g., TyTan) • Software-based (or minimal hardware-based) mechanisms ensuring consistency 33 June 5, 2018 AsiaCCS'18

  34. Questions? Contact: nrattana@uci.edu Our lab: sprout.ics.uci.edu June 5, 2018 AsiaCCS'18 34

  35. Uninterruptability vs Memory Locking • June 5, 2018 AsiaCCS'18 35

  36. Memory Access Violations • June 5, 2018 AsiaCCS'18 36

  37. HYDRA Architecture User-space ▪ Has highest priority ▪ Has access to all memory blocks Task 1 Task 2 Task 3 Task 4 ▪ Distribute memory access capabilities (caps) during init ▪ Can change/revoke caps at run-time Attestation Process (P Attest ) seL4 Microkernel Hardware-Enforced Secure Boot Check for integrity and Initialize then initialize June 5, 2018 AsiaCCS'18 37

  38. Integrity-Ensuring Computation Sender Receiver ✓ =? (1): F F ✘ (2): =? F F Changes (red dots) in input happen in middle of F 38 June 5, 2018 AsiaCCS'18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Enterprise Functionalities: 2 Data management Ensuring integrity, e.g., entity and referential

Enterprise Functionalities: 2 Data management Ensuring integrity, e.g., entity and referential

Enterprise Functionalities: 2 Data management Ensuring integrity, e.g., entity and referential integrity (richer than storage-level integrity) Enabling access under various kinds of problems, e.g., network partitions Supporting recovery,

487 views • 11 slides
Ensuring consistency between LSE load forecasts for CRR and Resource Adequacy (RA) purposes

Ensuring consistency between LSE load forecasts for CRR and Resource Adequacy (RA) purposes

California Independent System Operator Corporation Ensuring consistency between LSE load forecasts for CRR and Resource Adequacy (RA) purposes Stakeholder Meeting June 14, 2007 Saurabh Monga Market Operations - CRR Team California

584 views • 8 slides
Ensuring Resource Trust and Integrity in Web Browsers using Blockchain Technology Benjamin

Ensuring Resource Trust and Integrity in Web Browsers using Blockchain Technology Benjamin

Introduction Conceptual Overview Peer Review Process Conclusion Ensuring Resource Trust and Integrity in Web Browsers using Blockchain Technology Benjamin Leiding 1 Clemens H. Cap 2 1 University of Gttingen, Germany

476 views • 21 slides
Web Cache Consistency Web Cache Consistency Web Cache Consistency Web Cache Consistency

Web Cache Consistency Web Cache Consistency Web Cache Consistency Web Cache Consistency

Web Cache Consistency Web Cache Consistency Web Cache Consistency Web Cache Consistency Requirements of performance, availability, and disconnected operation require us to relax the goal of semantic transparency. - HTTP 1.1 specification

598 views • 13 slides
THE EVOLVING CYBER THREAT LANDSCAPE : Ensuring the Integrity and Value of Information Sean

THE EVOLVING CYBER THREAT LANDSCAPE : Ensuring the Integrity and Value of Information Sean

THE EVOLVING CYBER THREAT LANDSCAPE : Ensuring the Integrity and Value of Information Sean Kanuck Director of Cyber, Space and Future Conflict The International Institute for Strategic Studies NATO Parliamentary Assembly Warsaw, Poland 27

694 views • 10 slides
Modernization: Ensuring the Quality, Consistency and Value of Canadian Wheat Canadian Grain

Modernization: Ensuring the Quality, Consistency and Value of Canadian Wheat Canadian Grain

Canadian Grain Commissions Wheat Class Modernization: Ensuring the Quality, Consistency and Value of Canadian Wheat Canadian Grain Commission cigi.ca cerealscanada.ca grainscanada.gc.ca Contents Context Background for the

550 views • 29 slides
Research Revenue Integrity Responsible for ensuring all technical and professional services

Research Revenue Integrity Responsible for ensuring all technical and professional services

Research Revenue Integrity Responsible for ensuring all technical and professional services provided under a clinical research study at any UC Irvine Health location are identified, coded, recharged and/or billed correctly. What is Research

324 views • 11 slides
Ensuring data integrity with asynchronous programming in a cloud IoT core Europython 2020

Ensuring data integrity with asynchronous programming in a cloud IoT core Europython 2020

Ensuring data integrity with asynchronous programming in a cloud IoT core Europython 2020 George Python Enthusiast, Angular addicted. Currently working as a Zisopoulos Full-Stack Engineer at Veturilo.io Theofanis Python Fanatic, Elixir and

348 views • 31 slides
Outline Active elements CS 235: Maintain database integrity and consistency. Part

Outline Active elements CS 235: Maintain database integrity and consistency. Part

Outline Active elements CS 235: Maintain database integrity and consistency. Part of database schema. Introduction to Databases Constraints Svetlozar Nestorov Lecture Notes #13 Constraints Constraint Types

184 views • 4 slides
Ensuring Organic Integrity Periodic Residue Sampling FOR WEBINAR AUDIO Dial 1-719-955-0562

Ensuring Organic Integrity Periodic Residue Sampling FOR WEBINAR AUDIO Dial 1-719-955-0562

Ensuring Organic Integrity Periodic Residue Sampling FOR WEBINAR AUDIO Dial 1-719-955-0562 Passcode 665 716 # Tuesday, August 19 2014 | 10:00 AM Pacific |1:00 PM Eastern Welcome! Presenter Nathaniel Lewis Organic Trade Association Senior

600 views • 34 slides
Consistency - Chapter 5 Introduce several notions of Local Consistency: arc consistency,

Consistency - Chapter 5 Introduce several notions of Local Consistency: arc consistency,

Constraints Course - Justin Pearson - Consistency 1 Consistency - Chapter 5 Introduce several notions of Local Consistency: arc consistency, hyper-arc consistency, k-consistency and strong k-consistency. Local

728 views • 37 slides
Constraint Programming - An overview Node-consistency Arc-consistency Path-consistency

Constraint Programming - An overview Node-consistency Arc-consistency Path-consistency

Constraint Programming - An overview Node-consistency Arc-consistency Path-consistency I-consistency Generalised Arc-consistency Bounds-Consistency Propagators: The COMET example 7 November 2011 Constraint Propagation

615 views • 60 slides
KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY Blockchain &amp; Security Ruth Crowell, Chief Executive Asia Pacific Precious Metals

460 views • 10 slides
Faster Dynamic-Consistency Checking for Conditional Simple Temporal Networks Luke Hunsberger 1

Faster Dynamic-Consistency Checking for Conditional Simple Temporal Networks Luke Hunsberger 1

Faster Dynamic-Consistency Checking for Conditional Simple Temporal Networks Luke Hunsberger 1 Roberto Posenato 2 1 Department of Computer Science, Vassar College, Poughkeepsie, NY, USA 2 Department of Computer Science, University of Verona, Italy

767 views • 33 slides
Embarrassingly Parallel Computations 3.2 1 Embarrassingly Parallel Computations A computation

Embarrassingly Parallel Computations 3.2 1 Embarrassingly Parallel Computations A computation

Parallel Techniques Embarrassingly Parallel Computations Partitioning and Divide-and-Conquer Strategies Pipelined Computations Synchronous Computations Asynchronous Computations Asynchronous Computations Strategies

378 views • 13 slides
Consistent Storage or Scalable Storage Why Not Both? CONSISTENCY Strong Consistency

Consistent Storage or Scalable Storage Why Not Both? CONSISTENCY Strong Consistency

Consistent Storage or Scalable Storage Why Not Both? CONSISTENCY Strong Consistency Eventual Consistency &quot;Consistency in database systems refers to the requirement that any given database transaction must change affected data only in

668 views • 54 slides
Performance Portable Supernode-based Sparse Triangular Solver for Manycore Architecture Ichitaro

Performance Portable Supernode-based Sparse Triangular Solver for Manycore Architecture Ichitaro

Performance Portable Supernode-based Sparse Triangular Solver for Manycore Architecture Ichitaro Yamazaki, Sivasankaran Rajamanickam, and Nathan David Ellingwood Sandia National Laboratories, Albuquerque, New Mexico, USA International Conference

433 views • 11 slides
Simulated Annealing Simulated annealing is a probabilistic search algorithm. The

Simulated Annealing Simulated annealing is a probabilistic search algorithm. The

Simulated Annealing Simulated Annealing Simulated annealing is a probabilistic search algorithm. The terminology is borrowed from the physics literature. For the simulated annealing algorithm we need a scoring function, a move

668 views • 12 slides
Distinguisher-Dependent Simulation Dakshita Khurana Joint work with Abhishek Jain, Yael Kalai and

Distinguisher-Dependent Simulation Dakshita Khurana Joint work with Abhishek Jain, Yael Kalai and

Distinguisher-Dependent Simulation Dakshita Khurana Joint work with Abhishek Jain, Yael Kalai and Ron Rothblum Interactive Proofs for NP Interactive Proof (GMR85, Babai85) ? , P V accept Security Against Malicious

515 views • 35 slides
security assessment Alexey Osipov Timur Yunusov http://scadasl.org who we are SCADAStrangeLove

security assessment Alexey Osipov Timur Yunusov http://scadasl.org who we are SCADAStrangeLove

#root via SMS: 4G access level security assessment Alexey Osipov Timur Yunusov http://scadasl.org who we are SCADAStrangeLove Timur @a66at Yunusov Sergey @scadasl Gordeychik Alex @arbitrarycode Zaitsev Alexey @GiftsUngiven Osipov Kirill

1.19k views • 86 slides
Single photon sources using a coherently driven Rydberg atom gas David Petrosyan How to produce

Single photon sources using a coherently driven Rydberg atom gas David Petrosyan How to produce

Single photon sources using a coherently driven Rydberg atom gas David Petrosyan How to produce single photons? Using single emitter strongly coupled to a resonant cavity ( &lt; g ) e Excitation Cavity photon pulse s g How to produce

825 views • 16 slides
Nested QoS: Providing Flexible Performance in Shared IO Environment Hui Wang Peter Varman Rice

Nested QoS: Providing Flexible Performance in Shared IO Environment Hui Wang Peter Varman Rice

Nested QoS: Providing Flexible Performance in Shared IO Environment Hui Wang Peter Varman Rice University Houston, TX 1 Outline l Introduction l System model l Analysis l Evaluation l Conclusions and future work 2 Resource

402 views • 26 slides
On the Computation and Communication Complexity of Parallel SGD with Dynamic Batch Sizes for

On the Computation and Communication Complexity of Parallel SGD with Dynamic Batch Sizes for

On the Computation and Communication Complexity of Parallel SGD with Dynamic Batch Sizes for Stochastic Non-Convex Optimization Poster @ Pacific Ballroom #103 Hao Yu , Rong Jin Machine Intelligence Technology Alibaba Group (US) Inc., Bellevue, WA

756 views • 23 slides
CS 293S Pointer Analysis Yufei Ding Slides adapted from Wei Le, Stephen Chong Focus of this

CS 293S Pointer Analysis Yufei Ding Slides adapted from Wei Le, Stephen Chong Focus of this

CS 293S Pointer Analysis Yufei Ding Slides adapted from Wei Le, Stephen Chong Focus of this lecture Terms and concepts Algorithms: Andersen-Style and Steensgaard-Style Advanced topics 2 What is Pointer/Alias/points-to Analysis?

347 views • 32 slides

More recommend