Nonlinear Code-Based Low-Overhead Fine-Grained Control Flow Checking

Gilad Dar; Giorgio Di Natale; Osnat Keren

doi:10.1109/TC.2021.3057132

Nonlinear Code-Based Low-Overhead Fine-Grained Control Flow Checking

Gilad Dar, Giorgio Di Natale, Osnat Keren

Bar-Ilan University - The Alexander Kofkin Faculty of Engineering

Research output: Contribution to journal › Article › peer-review

2 Scopus citations

Abstract

A hardware-based control flow monitoring technique enables the detection of errors in both the control flow and the instruction stream executed on a processor. However, as shown in recent publications, these techniques fail to detect malicious carefully-tuned manipulations of the instruction stream in a basic block. This article presents a non-linear encoder and checker that can cope with this weakness. It is a MAC based control flow checker that has the advantage of working with basic blocks of variable length, can detect every error, and performs the computation in real-time. The architecture can easily be modified to support different signature size and error masking probabilities.

Original language	English
Pages (from-to)	658-669
Number of pages	12
Journal	IEEE Transactions on Computers
Volume	71
Issue number	3
DOIs	https://doi.org/10.1109/TC.2021.3057132
State	Published - 1 Mar 2022

Bibliographical note

Publisher Copyright:
© 1968-2012 IEEE.

Keywords

Control flow checking
Countermeasures
Embedded security
Non-linear codes
Signature

Access to Document

10.1109/TC.2021.3057132

Cite this

@article{0361eb4e38b74a03801f4674a46dd461,

title = "Nonlinear Code-Based Low-Overhead Fine-Grained Control Flow Checking",

abstract = "A hardware-based control flow monitoring technique enables the detection of errors in both the control flow and the instruction stream executed on a processor. However, as shown in recent publications, these techniques fail to detect malicious carefully-tuned manipulations of the instruction stream in a basic block. This article presents a non-linear encoder and checker that can cope with this weakness. It is a MAC based control flow checker that has the advantage of working with basic blocks of variable length, can detect every error, and performs the computation in real-time. The architecture can easily be modified to support different signature size and error masking probabilities.",

keywords = "Control flow checking, Countermeasures, Embedded security, Non-linear codes, Signature",

author = "Gilad Dar and Natale, {Giorgio Di} and Osnat Keren",

note = "Publisher Copyright: {\textcopyright} 1968-2012 IEEE.",

year = "2022",

month = mar,

day = "1",

doi = "10.1109/TC.2021.3057132",

language = "אנגלית",

volume = "71",

pages = "658--669",

journal = "IEEE Transactions on Computers",

issn = "0018-9340",

publisher = "IEEE Computer Society",

number = "3",

}

TY - JOUR

T1 - Nonlinear Code-Based Low-Overhead Fine-Grained Control Flow Checking

AU - Dar, Gilad

AU - Natale, Giorgio Di

AU - Keren, Osnat

PY - 2022/3/1

Y1 - 2022/3/1

N2 - A hardware-based control flow monitoring technique enables the detection of errors in both the control flow and the instruction stream executed on a processor. However, as shown in recent publications, these techniques fail to detect malicious carefully-tuned manipulations of the instruction stream in a basic block. This article presents a non-linear encoder and checker that can cope with this weakness. It is a MAC based control flow checker that has the advantage of working with basic blocks of variable length, can detect every error, and performs the computation in real-time. The architecture can easily be modified to support different signature size and error masking probabilities.

AB - A hardware-based control flow monitoring technique enables the detection of errors in both the control flow and the instruction stream executed on a processor. However, as shown in recent publications, these techniques fail to detect malicious carefully-tuned manipulations of the instruction stream in a basic block. This article presents a non-linear encoder and checker that can cope with this weakness. It is a MAC based control flow checker that has the advantage of working with basic blocks of variable length, can detect every error, and performs the computation in real-time. The architecture can easily be modified to support different signature size and error masking probabilities.

KW - Control flow checking

KW - Countermeasures

KW - Embedded security

KW - Non-linear codes

KW - Signature

UR - http://www.scopus.com/inward/record.url?scp=85100833452&partnerID=8YFLogxK

U2 - 10.1109/TC.2021.3057132

DO - 10.1109/TC.2021.3057132

M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???

AN - SCOPUS:85100833452

SN - 0018-9340

VL - 71

SP - 658

EP - 669

JO - IEEE Transactions on Computers

JF - IEEE Transactions on Computers

IS - 3

ER -

Nonlinear Code-Based Low-Overhead Fine-Grained Control Flow Checking

Abstract

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this