Nanovised Control Flow Attestation

Raz Ben Yehuda; Michael Kiperberg; Nezer Jacob Zaidenberg

doi:10.3390/app12052669

Nanovised Control Flow Attestation

Raz Ben Yehuda, Michael Kiperberg, Nezer Jacob Zaidenberg

Research output: Contribution to journal › Article › peer-review

1 Scopus citations

Abstract

This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.

Original language	English
Article number	2669
Journal	Applied Sciences (Switzerland)
Volume	12
Issue number	5
DOIs	https://doi.org/10.3390/app12052669
State	Published - 1 Mar 2022
Externally published	Yes

Keywords

ARM
Control flow
Hypervisor
Linux
SlowLoris
TrustZone

Access to Document

10.3390/app12052669

Cite this

@article{7fa20d84528f4eb6bd2a224948bd685e,

title = "Nanovised Control Flow Attestation",

abstract = "This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM{\textquoteright}s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.",

keywords = "ARM, Control flow, Hypervisor, Linux, SlowLoris, TrustZone",

author = "Yehuda, \{Raz Ben\} and Michael Kiperberg and Zaidenberg, \{Nezer Jacob\}",

note = "Publisher Copyright: {\textcopyright} 2022 by the authors. Licensee MDPI, Basel, Switzerland.",

year = "2022",

month = mar,

day = "1",

doi = "10.3390/app12052669",

language = "אנגלית",

volume = "12",

journal = "Applied Sciences (Switzerland)",

issn = "2076-3417",

publisher = "Multidisciplinary Digital Publishing Institute (MDPI)",

number = "5",

}

TY - JOUR

T1 - Nanovised Control Flow Attestation

AU - Yehuda, Raz Ben

AU - Kiperberg, Michael

AU - Zaidenberg, Nezer Jacob

PY - 2022/3/1

Y1 - 2022/3/1

N2 - This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.

AB - This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.

KW - ARM

KW - Control flow

KW - Hypervisor

KW - Linux

KW - SlowLoris

KW - TrustZone

UR - https://www.scopus.com/pages/publications/85126327043

U2 - 10.3390/app12052669

DO - 10.3390/app12052669

M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???

AN - SCOPUS:85126327043

SN - 2076-3417

VL - 12

JO - Applied Sciences (Switzerland)

JF - Applied Sciences (Switzerland)

IS - 5

M1 - 2669

ER -

Nanovised Control Flow Attestation

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this