Nanovised Control Flow Attestation
| dc.contributor.author | Ben Yehuda, Raz | |
| dc.contributor.author | Kiperberg, Michael | |
| dc.contributor.author | Zaidenberg, Nezer Jacob | |
| dc.date.accessioned | 2022-03-16T11:57:50Z | |
| dc.date.available | 2022-03-16T11:57:50Z | |
| dc.date.issued | 2022 | |
| dc.identifier.citation | Ben Yehuda, R., Kiperberg, M., & Zaidenberg, N. J. (2022). Nanovised Control Flow Attestation. <i>Applied Sciences</i>, <i>12</i>(5), Article 2669. <a href="https://doi.org/10.3390/app12052669" target="_blank">https://doi.org/10.3390/app12052669</a> | |
| dc.identifier.other | CONVID_104531706 | |
| dc.identifier.uri | https://jyx.jyu.fi/handle/123456789/80179 | |
| dc.description.abstract | This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the detection of the SlowLoris attack on the Apache web server. | en |
| dc.format.mimetype | application/pdf | |
| dc.language.iso | eng | |
| dc.publisher | MDPI AG | |
| dc.relation.ispartofseries | Applied Sciences | |
| dc.rights | CC BY 4.0 | |
| dc.subject.other | hypervisor | |
| dc.subject.other | ARM | |
| dc.subject.other | Linux | |
| dc.subject.other | control flow | |
| dc.subject.other | SlowLoris | |
| dc.subject.other | TrustZone | |
| dc.title | Nanovised Control Flow Attestation | |
| dc.type | article | |
| dc.identifier.urn | URN:NBN:fi:jyu-202203161880 | |
| dc.contributor.laitos | Informaatioteknologian tiedekunta | fi |
| dc.contributor.laitos | Faculty of Information Technology | en |
| dc.contributor.oppiaine | Tekniikka | fi |
| dc.contributor.oppiaine | Engineering | en |
| dc.type.uri | http://purl.org/eprint/type/JournalArticle | |
| dc.type.coar | http://purl.org/coar/resource_type/c_2df8fbb1 | |
| dc.description.reviewstatus | peerReviewed | |
| dc.relation.issn | 2076-3417 | |
| dc.relation.numberinseries | 5 | |
| dc.relation.volume | 12 | |
| dc.type.version | publishedVersion | |
| dc.rights.copyright | © 2022 the Authors | |
| dc.rights.accesslevel | openAccess | fi |
| dc.subject.yso | Linux | |
| dc.subject.yso | virtualisointi | |
| dc.subject.yso | pääsynvalvonta | |
| dc.subject.yso | tietoturva | |
| dc.format.content | fulltext | |
| jyx.subject.uri | http://www.yso.fi/onto/yso/p723 | |
| jyx.subject.uri | http://www.yso.fi/onto/yso/p22009 | |
| jyx.subject.uri | http://www.yso.fi/onto/yso/p15780 | |
| jyx.subject.uri | http://www.yso.fi/onto/yso/p5479 | |
| dc.rights.url | https://creativecommons.org/licenses/by/4.0/ | |
| dc.relation.doi | 10.3390/app12052669 | |
| jyx.fundinginformation | This research received no external funding. | |
| dc.type.okm | A1 |
Aineistoon kuuluvat tiedostot
Aineisto kuuluu seuraaviin kokoelmiin
Ellei muuten mainita, aineiston lisenssi on CC BY 4.0