Skip to Main content Skip to Navigation
Journal articles

Hybrid Obfuscation to Protect against Disclosure Attacks on Embedded Microprocessors

Abstract : The risk of code reverse-engineering is particularly acute for embedded processors which often have limited available resources to protect program information. Previous efforts involving code obfuscation provide some additional security against reverse-engineering of programs, but the security benefits are typically limited and not quantifiable. Hence, new approaches to code protection and creation of associated metrics are highly desirable. This paper has two main contributions. We propose the first hybrid diversification approach for protecting embedded software and we provide statistical metrics to evaluate the protection. Diversification is achieved by combining hardware obfuscation at the microarchitecture level and the use of software-level obfuscation techniques tailored to embedded systems. Both measures are based on a compiler which generates obfuscated programs, and an embedded processor implemented in an FPGA with a randomized ISA encoding to execute the hybrid obfuscated program. We employ a fine-grained, hardware-enforced access control mechanism for information exchange with the processor and hardware-assisted booby traps to actively counteract manipulation attacks. It is shown that our approach is effective against a wide variety of possible information disclosure attacks in case of a physically present adversary. Moreover, we propose a novel statistical evaluation methodology that provides a security metric for hybrid-obfuscated programs.
Complete list of metadata
Contributor : Simon Rokicki Connect in order to contact the contributor
Submitted on : Wednesday, January 4, 2017 - 4:29:58 PM
Last modification on : Thursday, November 4, 2021 - 10:54:02 AM
Long-term archiving on: : Wednesday, April 5, 2017 - 2:34:20 PM


Files produced by the author(s)


  • HAL Id : hal-01426565, version 1


Marc Fyrbiak, Simon Rokicki, Nicolai Bissantz, Russell Tessier, Christof Paar. Hybrid Obfuscation to Protect against Disclosure Attacks on Embedded Microprocessors. IEEE Transactions on Computers, Institute of Electrical and Electronics Engineers, 2017. ⟨hal-01426565⟩



Les métriques sont temporairement indisponibles