Sciweavers

CGO
2005
IEEE

Building Intrusion-Tolerant Secure Software

14 years 5 months ago
Building Intrusion-Tolerant Secure Software
In this work, we develop a secret sharing based compiler solution to achieve confidentiality, integrity and availability (intrusion tolerance) of critical data together, rather than tackling them one by one as in previous approaches. Under our scheme, some critical data values are automatically identified by the compiler, whereas some others are specified by the user. The compiler generates code for scattering/assembling and verifying of those critical data values using secret sharing scheme. In this way, we achieve data confidentiality and integrity. We also provide mechanisms to gracefully recover upon data tampering, achieving intrusion tolerance. The implementation of our secret sharing scheme is carefully crafted to achieve low overhead. We further propose several compiler optimizations such as secret-sharingaware register allocation, rematerialization etc. to reduce the cost of secret sharing further, making our scheme a practical solution in a high performance system.
Tao Zhang, Xiaotong Zhuang, Santosh Pande
Added 24 Jun 2010
Updated 24 Jun 2010
Type Conference
Year 2005
Where CGO
Authors Tao Zhang, Xiaotong Zhuang, Santosh Pande
Comments (0)