Hybrid Obfuscation to Protect against Disclosure Attacks on Embedded Microprocessors

Abstract : The risk of code reverse-engineering is particularly acute for embedded processors which often have limited available resources to protect program information. Previous efforts involving code obfuscation provide some additional security against reverse-engineering of programs, but the security benefits are typically limited and not quantifiable. Hence, new approaches to code protection and creation of associated metrics are highly desirable. This paper has two main contributions. We propose the first hybrid diversification approach for protecting embedded software and we provide statistical metrics to evaluate the protection. Diversification is achieved by combining hardware obfuscation at the microarchitecture level and the use of software-level obfuscation techniques tailored to embedded systems. Both measures are based on a compiler which generates obfuscated programs, and an embedded processor implemented in an FPGA with a randomized ISA encoding to execute the hybrid obfuscated program. We employ a fine-grained, hardware-enforced access control mechanism for information exchange with the processor and hardware-assisted booby traps to actively counteract manipulation attacks. It is shown that our approach is effective against a wide variety of possible information disclosure attacks in case of a physically present adversary. Moreover, we propose a novel statistical evaluation methodology that provides a security metric for hybrid-obfuscated programs.
Type de document :
Article dans une revue
IEEE Transactions on Computers, Institute of Electrical and Electronics Engineers, 2017
Liste complète des métadonnées

https://hal.inria.fr/hal-01426565
Contributeur : Simon Rokicki <>
Soumis le : mercredi 4 janvier 2017 - 16:29:58
Dernière modification le : jeudi 15 novembre 2018 - 11:58:57
Document(s) archivé(s) le : mercredi 5 avril 2017 - 14:34:20

Fichier

TC_camera_ready.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01426565, version 1

Citation

Marc Fyrbiak, Simon Rokicki, Nicolai Bissantz, Russell Tessier, Christof Paar. Hybrid Obfuscation to Protect against Disclosure Attacks on Embedded Microprocessors. IEEE Transactions on Computers, Institute of Electrical and Electronics Engineers, 2017. 〈hal-01426565〉

Partager

Métriques

Consultations de la notice

670

Téléchargements de fichiers

603