A Generic Attack on Checksumming-Based Software Tamper Resistance

14 years 6 months ago

Download www.ccsl.carleton.ca

Self-checking software tamper resistance mechanisms employing checksums, including advanced systems as recently proposed by Chang and Atallah (2002) and Horne et al. (2002), have been promoted as an alternative to other software integrity veriﬁcation techniques. Appealing aspects include the promise of being able to verify the integrity of software independent of the external support environment, as well as the ability to automatically integrate checksumming code during program compilation or linking. In this paper, we show that the rich functionality of many modern processors, including UltraSparc and x86-compatible processors, facilitates automated attacks which defeat such checksumming by self-checking programs.

Glenn Wurster, Paul C. van Oorschot, Anil Somayaji

Real-time Traffic

Mechanisms Employing Checksums | Security Privacy | Self-checking Software Tamper | Software Integrity Veriﬁcation | SP 2005 |

claim paper

Post Info
More Details (n/a)

Added	25 Jun 2010
Updated	25 Jun 2010
Type	Conference
Year	2005
Where	SP
Authors	Glenn Wurster, Paul C. van Oorschot, Anil Somayaji

Comments (0)

Sciweavers

A Generic Attack on Checksumming-Based Software Tamper Resistance

Mechanisms Employing Checksums | Security Privacy | Self-checking Software Tamper | Software Integrity Veriﬁcation | SP 2005 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers