Determining the integrity of application binaries on unsecure legacy machines using software based remote attestation

Raghunathan Srinivasan, Partha Dasgupta, Tushar Gohad, Amiya Bhattacharya

Research output: Chapter in Book/Report/Conference proceedingConference contribution

4 Citations (Scopus)

Abstract

Integrity of computing platforms is paramount. A platform is as secure as the applications executing on it. All applications are created with some inherent vulnerability or loophole. Attackers can analyze the presence of flaws in a particular binary and exploit them. Traditional virus scanners are also binaries which can be attacked by malware. This paper implements a method known as Remote Attestation entirely in software to attest the integrity of a process using a trusted external server. The trusted external server issues a challenge to the client machine which responds to the challenge. The response determines the integrity of the application.

Original languageEnglish (US)
Title of host publicationLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Pages66-80
Number of pages15
Volume6503 LNCS
DOIs
StatePublished - 2010
Event6th International Conference on Information Systems Security, ICISS 2010 - Gandhinagar, India
Duration: Dec 17 2010Dec 19 2010

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume6503 LNCS
ISSN (Print)03029743
ISSN (Electronic)16113349

Other

Other6th International Conference on Information Systems Security, ICISS 2010
CountryIndia
CityGandhinagar
Period12/17/1012/19/10

Fingerprint

Integrity
Binary
Software
Servers
Server
Malware
Scanner
Viruses
Vulnerability
Virus
Defects
Computing

Keywords

  • code injection
  • integrity measurement
  • remote attestation

ASJC Scopus subject areas

  • Computer Science(all)
  • Theoretical Computer Science

Cite this

Srinivasan, R., Dasgupta, P., Gohad, T., & Bhattacharya, A. (2010). Determining the integrity of application binaries on unsecure legacy machines using software based remote attestation. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6503 LNCS, pp. 66-80). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6503 LNCS). https://doi.org/10.1007/978-3-642-17714-9_6

Determining the integrity of application binaries on unsecure legacy machines using software based remote attestation. / Srinivasan, Raghunathan; Dasgupta, Partha; Gohad, Tushar; Bhattacharya, Amiya.

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 6503 LNCS 2010. p. 66-80 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6503 LNCS).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Srinivasan, R, Dasgupta, P, Gohad, T & Bhattacharya, A 2010, Determining the integrity of application binaries on unsecure legacy machines using software based remote attestation. in Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). vol. 6503 LNCS, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 6503 LNCS, pp. 66-80, 6th International Conference on Information Systems Security, ICISS 2010, Gandhinagar, India, 12/17/10. https://doi.org/10.1007/978-3-642-17714-9_6
Srinivasan R, Dasgupta P, Gohad T, Bhattacharya A. Determining the integrity of application binaries on unsecure legacy machines using software based remote attestation. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 6503 LNCS. 2010. p. 66-80. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-642-17714-9_6
Srinivasan, Raghunathan ; Dasgupta, Partha ; Gohad, Tushar ; Bhattacharya, Amiya. / Determining the integrity of application binaries on unsecure legacy machines using software based remote attestation. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 6503 LNCS 2010. pp. 66-80 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
@inproceedings{9c9ca90f3d32448787b24e7ed92335db,
title = "Determining the integrity of application binaries on unsecure legacy machines using software based remote attestation",
abstract = "Integrity of computing platforms is paramount. A platform is as secure as the applications executing on it. All applications are created with some inherent vulnerability or loophole. Attackers can analyze the presence of flaws in a particular binary and exploit them. Traditional virus scanners are also binaries which can be attacked by malware. This paper implements a method known as Remote Attestation entirely in software to attest the integrity of a process using a trusted external server. The trusted external server issues a challenge to the client machine which responds to the challenge. The response determines the integrity of the application.",
keywords = "code injection, integrity measurement, remote attestation",
author = "Raghunathan Srinivasan and Partha Dasgupta and Tushar Gohad and Amiya Bhattacharya",
year = "2010",
doi = "10.1007/978-3-642-17714-9_6",
language = "English (US)",
isbn = "3642177131",
volume = "6503 LNCS",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
pages = "66--80",
booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

}

TY - GEN

T1 - Determining the integrity of application binaries on unsecure legacy machines using software based remote attestation

AU - Srinivasan, Raghunathan

AU - Dasgupta, Partha

AU - Gohad, Tushar

AU - Bhattacharya, Amiya

PY - 2010

Y1 - 2010

N2 - Integrity of computing platforms is paramount. A platform is as secure as the applications executing on it. All applications are created with some inherent vulnerability or loophole. Attackers can analyze the presence of flaws in a particular binary and exploit them. Traditional virus scanners are also binaries which can be attacked by malware. This paper implements a method known as Remote Attestation entirely in software to attest the integrity of a process using a trusted external server. The trusted external server issues a challenge to the client machine which responds to the challenge. The response determines the integrity of the application.

AB - Integrity of computing platforms is paramount. A platform is as secure as the applications executing on it. All applications are created with some inherent vulnerability or loophole. Attackers can analyze the presence of flaws in a particular binary and exploit them. Traditional virus scanners are also binaries which can be attacked by malware. This paper implements a method known as Remote Attestation entirely in software to attest the integrity of a process using a trusted external server. The trusted external server issues a challenge to the client machine which responds to the challenge. The response determines the integrity of the application.

KW - code injection

KW - integrity measurement

KW - remote attestation

UR - http://www.scopus.com/inward/record.url?scp=78650856954&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=78650856954&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-17714-9_6

DO - 10.1007/978-3-642-17714-9_6

M3 - Conference contribution

AN - SCOPUS:78650856954

SN - 3642177131

SN - 9783642177132

VL - 6503 LNCS

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 66

EP - 80

BT - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

ER -