Resilient authenticated execution of critical applications in untrusted environments

Michael S. Kirkpatrick*, Gabriel Ghinita, Elisa Bertino

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

7 Citations (Scopus)

Abstract

Modern computer systems are built on a foundation of software components from a variety of vendors. While critical applications may undergo extensive testing and evaluation procedures, the heterogeneity of software sources threatens the integrity of the execution environment for these trusted programs. For instance, if an attacker can combine an application exploit with a privilege escalation vulnerability, the operating system (OS) can become corrupted. Alternatively, a malicious or faulty device driver running with kernel privileges could threaten the application. While the importance of ensuring application integrity has been studied in prior work, proposed solutions immediately terminate the application once corruption is detected. Although, this approach is sufficient for some cases, it is undesirable for many critical applications. In order to overcome this shortcoming, we have explored techniques for leveraging a trusted virtual machine monitor (VMM) to observe the application and potentially repair damage that occurs. In this paper, we describe our system design, which leverages efficient coding and authentication schemes, and we present the details of our prototype implementation to quantify the overhead of our approach. Our work shows that it is feasible to build a resilient execution environment, even in the presence of a corrupted OS kernel, with a reasonable amount of storage and performance overhead.

Original languageEnglish
Article number6165312
Pages (from-to)597-609
Number of pages13
JournalIEEE Transactions on Dependable and Secure Computing
Volume9
Issue number4
DOIs
Publication statusPublished - 2012
Externally publishedYes

Keywords

  • Operating systems
  • security
  • virtual machine monitors.

Fingerprint

Dive into the research topics of 'Resilient authenticated execution of critical applications in untrusted environments'. Together they form a unique fingerprint.

Cite this