Nanovised Control Flow Attestation

Raz Ben Yehuda; Michael Kiperberg; Nezer Jacob Zaidenberg

doi:10.3390/app12052669

Nanovised Control Flow Attestation

Raz Ben Yehuda
, Michael Kiperberg
, Nezer Jacob Zaidenberg

פרסום מחקרי: פרסום בכתב עת › מאמר › ביקורת עמיתים

1 ציטוט ‏(Scopus)

תקציר

This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.

שפה מקורית	אנגלית
מספר המאמר	2669
כתב עת	Applied Sciences (Switzerland)
כרך	12
מספר גיליון	5
מזהי עצם דיגיטלי (DOIs)	https://doi.org/10.3390/app12052669
סטטוס פרסום	פורסם - 1 מרץ 2022
פורסם באופן חיצוני	כן

גישה למסמך

10.3390/app12052669

קבצים וקישורים אחרים

Link to publication in Scopus

פורמט ציטוט ביבליוגרפי

@article{7fa20d84528f4eb6bd2a224948bd685e,

title = "Nanovised Control Flow Attestation",

abstract = "This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM{\textquoteright}s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.",

keywords = "ARM, Control flow, Hypervisor, Linux, SlowLoris, TrustZone",

author = "Yehuda, \{Raz Ben\} and Michael Kiperberg and Zaidenberg, \{Nezer Jacob\}",

note = "Publisher Copyright: {\textcopyright} 2022 by the authors. Licensee MDPI, Basel, Switzerland.",

year = "2022",

month = mar,

day = "1",

doi = "10.3390/app12052669",

language = "אנגלית",

volume = "12",

journal = "Applied Sciences (Switzerland)",

issn = "2076-3417",

publisher = "Multidisciplinary Digital Publishing Institute (MDPI)",

number = "5",

}

TY - JOUR

T1 - Nanovised Control Flow Attestation

AU - Yehuda, Raz Ben

AU - Kiperberg, Michael

AU - Zaidenberg, Nezer Jacob

PY - 2022/3/1

Y1 - 2022/3/1

N2 - This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.

AB - This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.

KW - ARM

KW - Control flow

KW - Hypervisor

KW - Linux

KW - SlowLoris

KW - TrustZone

UR - https://www.scopus.com/pages/publications/85126327043

U2 - 10.3390/app12052669

DO - 10.3390/app12052669

M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???

AN - SCOPUS:85126327043

SN - 2076-3417

VL - 12

JO - Applied Sciences (Switzerland)

JF - Applied Sciences (Switzerland)

IS - 5

M1 - 2669

ER -

Nanovised Control Flow Attestation

תקציר

גישה למסמך

קבצים וקישורים אחרים

טביעת אצבע

פורמט ציטוט ביבליוגרפי