Design and implementation of hardware-based dynamic instruction set randomization framework
All the existing ISR methods have some defects including stripping data from code segment is hard to accomplish,static ISR has fixed key and pseudo-random key is not secure.To introduce ISR technology into the se-curity protection of kernel layer and application layer,hardware-based dynamic instruct...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2017-11-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2017.00216 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841530127975972864 |
|---|---|
| author | San DU Hui SHU Fei KANG |
| author_facet | San DU Hui SHU Fei KANG |
| author_sort | San DU |
| collection | DOAJ |
| description | All the existing ISR methods have some defects including stripping data from code segment is hard to accomplish,static ISR has fixed key and pseudo-random key is not secure.To introduce ISR technology into the se-curity protection of kernel layer and application layer,hardware-based dynamic instruction set randomization framework (HDISR) was designed and implemented,in which program code was encrypted at loading time.Kernel encryption uses kernel key and applications encryption uses a different user key per process.The experimental re-sults show that HDISR can degrade code injection attack to Denial of Service attack with less than 2.57% additional hardware and 0.31s startup delay of each megabyte code encryption. |
| format | Article |
| id | doaj-art-512a39ae2d1e48c4822ced668a566e44 |
| institution | Kabale University |
| issn | 2096-109X |
| language | English |
| publishDate | 2017-11-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj-art-512a39ae2d1e48c4822ced668a566e442025-01-15T03:12:25ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2017-11-013293959552044Design and implementation of hardware-based dynamic instruction set randomization frameworkSan DUHui SHUFei KANGAll the existing ISR methods have some defects including stripping data from code segment is hard to accomplish,static ISR has fixed key and pseudo-random key is not secure.To introduce ISR technology into the se-curity protection of kernel layer and application layer,hardware-based dynamic instruction set randomization framework (HDISR) was designed and implemented,in which program code was encrypted at loading time.Kernel encryption uses kernel key and applications encryption uses a different user key per process.The experimental re-sults show that HDISR can degrade code injection attack to Denial of Service attack with less than 2.57% additional hardware and 0.31s startup delay of each megabyte code encryption.http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2017.00216code injection attackinstruction set randomizationdynamic instruction set randomizationkernel |
| spellingShingle | San DU Hui SHU Fei KANG Design and implementation of hardware-based dynamic instruction set randomization framework 网络与信息安全学报 code injection attack instruction set randomization dynamic instruction set randomization kernel |
| title | Design and implementation of hardware-based dynamic instruction set randomization framework |
| title_full | Design and implementation of hardware-based dynamic instruction set randomization framework |
| title_fullStr | Design and implementation of hardware-based dynamic instruction set randomization framework |
| title_full_unstemmed | Design and implementation of hardware-based dynamic instruction set randomization framework |
| title_short | Design and implementation of hardware-based dynamic instruction set randomization framework |
| title_sort | design and implementation of hardware based dynamic instruction set randomization framework |
| topic | code injection attack instruction set randomization dynamic instruction set randomization kernel |
| url | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2017.00216 |
| work_keys_str_mv | AT sandu designandimplementationofhardwarebaseddynamicinstructionsetrandomizationframework AT huishu designandimplementationofhardwarebaseddynamicinstructionsetrandomizationframework AT feikang designandimplementationofhardwarebaseddynamicinstructionsetrandomizationframework |