Sciweavers

SOCIALCOM
2010

A Multi-factor Approach to Securing Software on Client Computing Platforms

13 years 6 months ago
A Multi-factor Approach to Securing Software on Client Computing Platforms
Protecting the integrity of software platforms, especially in unmanaged consumer computing systems is a difficult problem. Attackers may attempt to execute buffer overflow attacks to gain access to systems, steal secrets and patch on existing binaries to hide detection. Every binary has inherent vulnerabilities that attackers may exploit. In this paper we present three orthogonal approaches; each of which provides a level of assurance against malware attacks beyond virus detectors. The approaches can be added on top of normal defenses and can be combined for tailoring the level of protection desired. This work attempts to find alternate solutions to the problem of malware resistance. The approaches we use are: adding diversity or randomization to data address spaces, hiding critical data to prevent data theft and the use of remote attestation to detect tampering with executable code. Keywords--Computer security, attacks, memory randomization, secure key storage in memory, remote attest...
Raghunathan Srinivasan, Vivek Iyer, Amit Kanitkar,
Added 21 May 2011
Updated 21 May 2011
Type Journal
Year 2010
Where SOCIALCOM
Authors Raghunathan Srinivasan, Vivek Iyer, Amit Kanitkar, Sujit Sanjeev, Jatin Lodhia, Partha Dasgupta
Comments (0)