Dynamic Information Flow Tracking for Embedded Binaries using SystemC-based Virtual Prototypes

Submitted by grigby1 on Mon, 03/29/2021 - 12:03pm

Title	Dynamic Information Flow Tracking for Embedded Binaries using SystemC-based Virtual Prototypes
Publication Type	Conference Paper
Year of Publication	2020
Authors	Pieper, P., Herdt, V., Große, D., Drechsler, R.
Conference Name	2020 57th ACM/IEEE Design Automation Conference (DAC)
Date Published	July 2020
Publisher	IEEE
ISBN Number	978-1-7281-1085-1
Keywords	accurate DIFT, C++ languages, composability, data flow analysis, Data models, DIFT engine, Dynamic Information Flow Tracking, early DIFT, embedded binaries, Embedded systems, Engines, existing DIFT approaches, Metrics, Prototypes, pubcrawl, resilience, Resiliency, security, security of data, security policies, security related exploits, security vulnerabilities, SystemC-based virtual prototypes, Vehicle dynamics, virtual prototyping
Abstract	Avoiding security vulnerabilities is very important for embedded systems. Dynamic Information Flow Tracking (DIFT) is a powerful technique to analyze SW with respect to security policies in order to protect the system against a broad range of security related exploits. However, existing DIFT approaches either do not exist for Virtual Prototypes (VPs) or fail to model complex hardware/software interactions.In this paper, we present a novel approach that enables early and accurate DIFT of binaries targeting embedded systems with custom peripherals. Leveraging the SystemC framework, our DIFT engine tracks accurate data flow information alongside the program execution to detect violations of security policies at run-time. We demonstrate the effectiveness and applicability of our approach by extensive experiments.
URL	https://ieeexplore.ieee.org/document/9218494
DOI	10.1109/DAC18072.2020.9218494
Citation Key	pieper_dynamic_2020

Groups:

Science of Security VO