Software-driven Security Attacks: From Vulnerability Sources to Durable Hardware Defenses-Reference-Cited by-同舟云学术

Software-driven Security Attacks: From Vulnerability Sources to Durable Hardware Defenses

Published:2021-08 Issue:3 Volume:17 Page:1-38
ISSN:1550-4832
Container-title:ACM Journal on Emerging Technologies in Computing Systems
language:en
Short-container-title:J. Emerg. Technol. Comput. Syst.

Author:

Biernacki Lauren¹,Gallagher Mark¹,Xu Zhixing²,Aga Misiker Tadesse¹,Harris Austin³,Wei Shijia³,Tiwari Mohit³,Kasikci Baris¹,Malik Sharad²,Austin Todd¹

Affiliation:

1. University of Michigan

2. Princeton University

3. University of Texas at Austin

Abstract

There is an increasing body of work in the area of hardware defenses for software-driven security attacks. A significant challenge in developing these defenses is that the space of security vulnerabilities and exploits is large and not fully understood. This results in specific point defenses that aim to patch particular vulnerabilities. While these defenses are valuable, they are often blindsided by fresh attacks that exploit new vulnerabilities. This article aims to address this issue by suggesting ways to make future defenses more durable based on an organization of security vulnerabilities as they arise throughout the program life cycle. We classify these vulnerability sources through programming, compilation, and hardware realization, and we show how each source introduces unintended states and transitions into the implementation. Further, we show how security exploits gain control by moving the implementation to an unintended state using knowledge of these sources and how defenses work to prevent these transitions. This framework of analyzing vulnerability sources, exploits, and defenses provides insights into developing durable defenses that could defend against broader categories of exploits. We present illustrative case studies of four important attack genealogies—showing how they fit into the presented framework and how the sophistication of the exploits and defenses have evolved over time, providing us insights for the future.

Funder

DARPA

Publisher

Association for Computing Machinery (ACM)

Subject

Electrical and Electronic Engineering,Hardware and Architecture,Software

Link

https://dl.acm.org/doi/pdf/10.1145/3456299

Reference109 articles.

1. Mitre. 2001. CVE-2001-0144: SSH CRC-32 Compensation Attack Detector Vulnerability. Available from MITRE CVE-ID CVE-2001-0144. Retrieved from cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0144. Mitre. 2001. CVE-2001-0144: SSH CRC-32 Compensation Attack Detector Vulnerability. Available from MITRE CVE-ID CVE-2001-0144. Retrieved from cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0144.

2. Intel. 2018. Intel Analysis of Speculative Execution Side Channels. Retrieved from https://software.intel.com/security-software-guidance/api-app/sites/default/files/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf. Intel. 2018. Intel Analysis of Speculative Execution Side Channels. Retrieved from https://software.intel.com/security-software-guidance/api-app/sites/default/files/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf.

3. Polyverse. 2020. Polyverse. Retrieved from https://polyverse.com. Polyverse. 2020. Polyverse. Retrieved from https://polyverse.com.

Cited by 1 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Eternal-thing 2.0: Analog-Trojan-resilient Ripple-less Solar Harvesting System for Sustainable IoT;ACM Journal on Emerging Technologies in Computing Systems;2023-03-28