University of Jyväskylä | JYX Digital Repository

 
View Item 

Nanovised Control Flow Attestation

ThumbnailPublisher's PDF
444.5 Kb

Downloads:  
Show download detailsHide download details  
Ben Yehuda, R., Kiperberg, M., & Zaidenberg, N. J. (2022). Nanovised Control Flow Attestation. Applied Sciences, 12(5), Article 2669. https://doi.org/10.3390/app12052669
Published in
Applied Sciences
Authors
Ben Yehuda, Raz |
Kiperberg, Michael |
Zaidenberg, Nezer Jacob
Date
2022
Discipline
Ohjelmisto- ja tietoliikennetekniikkaSoftware and Communications Engineering
Copyright
© 2022 the Authors

 
This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server.
Publisher
MDPI AG
ISSN Search the Publication Forum
2076-3417
Keywords
DOI
https://doi.org/10.3390/app12052669
URI

http://urn.fi/URN:NBN:fi:jyu-202203161880

Publication in research information system

https://converis.jyu.fi/converis/portal/detail/Publication/104531706

Metadata
Show full item record
Collections
Additional information about funding
This research received no external funding.
License
CC BY 4.0
Except where otherwise noted, this item's license is described as CC BY 4.0
Data Protection Description

Accessibility Statement

Unless otherwise specified, publicly available JYX metadata (excluding abstracts) may be freely reused under the CC0 waiver.