Integrity Verification of Applications on RADIUM Architecture Page: 32
vii, 44 pages : color illustrationsView a full description of this thesis.
Extracted Text
The following text was automatically extracted from the image on this page using optical character recognition software:
CHAPTER 4
RELATED WORK
In this chapter, some of the works related to this thesis is summarized. My work is
inspired by [22] and closely related to [20]. Here, I have presented a summary and analysis
of these works and mentioned other works containing concepts that overlap with my work. I
intended to make my tool work in a very different environment (i.e. on a trusted hypervisor),
while most of the related works I summarized are host-based solutions.
4.1. Remote Attestation to Dynamic System Properties: Towards Providing Complete Sys-
tem Integrity Evidence
Remote attestation is a mechanism used for providing integrity evidence of a platform
to a remote entity. Currently, there are many static remote attestation mechanisms, but to
detect runtime attacks, dynamic attestation is needed. The authors identified that some
stack properties like saved frame pointer, return address, and stack pointer can be useful in
dynamic attestation. The integrity of the system can be measured based on these dynamic
properties. The attestation process must also be protected while measuring the dynamic
properties for integrity.
ReDAS (Remote Dynamic Attestation System) [20] "performs application-level dy-
namic attestation by monitoring running applications and secures integrity violation using
hardware support." The authors classified dynamic properties into two types: Structural and
Global data properties. These properties are extracted from applications during a training
phase. The integrity measurement component observes the application during the execution
phase and verifies whether the dynamic properties are unmodified by comparing their state
with values obtained during the training phase. The application is monitored during system
call time. This gives a fine balance between performance and granularity. Thus, data invari-
ants and stack structural constraints are measured for their integrity. ReDAS uses a TPM
assisted trusted mechanism to secure integrity evidence. TPM's Platform Configuration Reg-
isters are a tamper-proof form of storage technology. According to TPM Specifications, "The32
Upcoming Pages
Here’s what’s next.
Search Inside
This thesis can be searched. Note: Results may vary based on the legibility of text within the document.
Tools / Downloads
Get a copy of this page or view the extracted text.
Citing and Sharing
Basic information for referencing this web page. We also provide extended guidance on usage rights, references, copying or embedding.
Reference the current page of this Thesis.
Tarigopula, Mohan Krishna. Integrity Verification of Applications on RADIUM Architecture, thesis, August 2015; Denton, Texas. (https://digital.library.unt.edu/ark:/67531/metadc804915/m1/40/: accessed July 17, 2024), University of North Texas Libraries, UNT Digital Library, https://digital.library.unt.edu; .