A Stealth Security Hardening Method Based on SSD Firmware Function Extension

Xiao Yu; Zhao Li; Xu Qiao; Yuan Tan; Yuanzhang Li; Li Zhang

doi:10.1007/978-981-99-8138-0_29

A Stealth Security Hardening Method Based on SSD Firmware Function Extension

Xiao Yu, Zhao Li, Xu Qiao, Yuan Tan, Yuanzhang Li, Li Zhang^*

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In recent years, issues related to information security have received increasing attention. Expanding the security-related functionality of SSD firmware can provide an additional method for implementing security features in the host system while taking advantage of the excellent performance of the SSD controller. This paper proposes a stealth security hardening method based on SSD Firmware Function Extension. By reverse engineering the firmware program and inserting jump instructions at specific locations, the firmware program can jump to and execute the extension program inserted into the original unused space of the firmware. This can be done without affecting the normal use of the SSD, realizing the functional expansion of the firmware, which mainly includes executing remote code sent by the host, invoking timers, direct read and write flash memory, and self-destruction under specific circumstances. The availability of extended functions and the change in read and write performance after the expansion were experimentally tested.

Original language	English
Title of host publication	Neural Information Processing - 30th International Conference, ICONIP 2023, Proceedings
Editors	Biao Luo, Long Cheng, Zheng-Guang Wu, Hongyi Li, Chaojie Li
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	362-375
Number of pages	14
ISBN (Print)	9789819981373
DOIs	https://doi.org/10.1007/978-981-99-8138-0_29
Publication status	Published - 2024
Event	30th International Conference on Neural Information Processing, ICONIP 2023 - Changsha, China Duration: 20 Nov 2023 → 23 Nov 2023

Publication series

Name	Communications in Computer and Information Science
Volume	1963 CCIS
ISSN (Print)	1865-0929
ISSN (Electronic)	1865-0937

Conference

Conference	30th International Conference on Neural Information Processing, ICONIP 2023
Country/Territory	China
City	Changsha
Period	20/11/23 → 23/11/23

Keywords

Functional extension
SSD firmware
Security hardening

Access to Document

10.1007/978-981-99-8138-0_29

Cite this

Yu, X., Li, Z., Qiao, X., Tan, Y., Li, Y., & Zhang, L. (2024). A Stealth Security Hardening Method Based on SSD Firmware Function Extension. In B. Luo, L. Cheng, Z.-G. Wu, H. Li, & C. Li (Eds.), Neural Information Processing - 30th International Conference, ICONIP 2023, Proceedings (pp. 362-375). (Communications in Computer and Information Science; Vol. 1963 CCIS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-981-99-8138-0_29

Yu, Xiao ; Li, Zhao ; Qiao, Xu et al. / A Stealth Security Hardening Method Based on SSD Firmware Function Extension. Neural Information Processing - 30th International Conference, ICONIP 2023, Proceedings. editor / Biao Luo ; Long Cheng ; Zheng-Guang Wu ; Hongyi Li ; Chaojie Li. Springer Science and Business Media Deutschland GmbH, 2024. pp. 362-375 (Communications in Computer and Information Science).

@inproceedings{7efde5349a2a43e0b8e1fae862abda63,

title = "A Stealth Security Hardening Method Based on SSD Firmware Function Extension",

abstract = "In recent years, issues related to information security have received increasing attention. Expanding the security-related functionality of SSD firmware can provide an additional method for implementing security features in the host system while taking advantage of the excellent performance of the SSD controller. This paper proposes a stealth security hardening method based on SSD Firmware Function Extension. By reverse engineering the firmware program and inserting jump instructions at specific locations, the firmware program can jump to and execute the extension program inserted into the original unused space of the firmware. This can be done without affecting the normal use of the SSD, realizing the functional expansion of the firmware, which mainly includes executing remote code sent by the host, invoking timers, direct read and write flash memory, and self-destruction under specific circumstances. The availability of extended functions and the change in read and write performance after the expansion were experimentally tested.",

keywords = "Functional extension, SSD firmware, Security hardening",

author = "Xiao Yu and Zhao Li and Xu Qiao and Yuan Tan and Yuanzhang Li and Li Zhang",

note = "Publisher Copyright: {\textcopyright} 2024, The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.; 30th International Conference on Neural Information Processing, ICONIP 2023 ; Conference date: 20-11-2023 Through 23-11-2023",

year = "2024",

doi = "10.1007/978-981-99-8138-0_29",

language = "English",

isbn = "9789819981373",

series = "Communications in Computer and Information Science",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "362--375",

editor = "Biao Luo and Long Cheng and Zheng-Guang Wu and Hongyi Li and Chaojie Li",

booktitle = "Neural Information Processing - 30th International Conference, ICONIP 2023, Proceedings",

address = "Germany",

}

Yu, X, Li, Z, Qiao, X, Tan, Y , Li, Y & Zhang, L 2024, A Stealth Security Hardening Method Based on SSD Firmware Function Extension. in B Luo, L Cheng, Z-G Wu, H Li & C Li (eds), Neural Information Processing - 30th International Conference, ICONIP 2023, Proceedings. Communications in Computer and Information Science, vol. 1963 CCIS, Springer Science and Business Media Deutschland GmbH, pp. 362-375, 30th International Conference on Neural Information Processing, ICONIP 2023, Changsha, China, 20/11/23. https://doi.org/10.1007/978-981-99-8138-0_29

A Stealth Security Hardening Method Based on SSD Firmware Function Extension. / Yu, Xiao; Li, Zhao; Qiao, Xu et al.
Neural Information Processing - 30th International Conference, ICONIP 2023, Proceedings. ed. / Biao Luo; Long Cheng; Zheng-Guang Wu; Hongyi Li; Chaojie Li. Springer Science and Business Media Deutschland GmbH, 2024. p. 362-375 (Communications in Computer and Information Science; Vol. 1963 CCIS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A Stealth Security Hardening Method Based on SSD Firmware Function Extension

AU - Yu, Xiao

AU - Li, Zhao

AU - Qiao, Xu

AU - Tan, Yuan

AU - Li, Yuanzhang

AU - Zhang, Li

PY - 2024

Y1 - 2024

N2 - In recent years, issues related to information security have received increasing attention. Expanding the security-related functionality of SSD firmware can provide an additional method for implementing security features in the host system while taking advantage of the excellent performance of the SSD controller. This paper proposes a stealth security hardening method based on SSD Firmware Function Extension. By reverse engineering the firmware program and inserting jump instructions at specific locations, the firmware program can jump to and execute the extension program inserted into the original unused space of the firmware. This can be done without affecting the normal use of the SSD, realizing the functional expansion of the firmware, which mainly includes executing remote code sent by the host, invoking timers, direct read and write flash memory, and self-destruction under specific circumstances. The availability of extended functions and the change in read and write performance after the expansion were experimentally tested.

AB - In recent years, issues related to information security have received increasing attention. Expanding the security-related functionality of SSD firmware can provide an additional method for implementing security features in the host system while taking advantage of the excellent performance of the SSD controller. This paper proposes a stealth security hardening method based on SSD Firmware Function Extension. By reverse engineering the firmware program and inserting jump instructions at specific locations, the firmware program can jump to and execute the extension program inserted into the original unused space of the firmware. This can be done without affecting the normal use of the SSD, realizing the functional expansion of the firmware, which mainly includes executing remote code sent by the host, invoking timers, direct read and write flash memory, and self-destruction under specific circumstances. The availability of extended functions and the change in read and write performance after the expansion were experimentally tested.

KW - Functional extension

KW - SSD firmware

KW - Security hardening

UR - http://www.scopus.com/inward/record.url?scp=85178644807&partnerID=8YFLogxK

U2 - 10.1007/978-981-99-8138-0_29

DO - 10.1007/978-981-99-8138-0_29

M3 - Conference contribution

AN - SCOPUS:85178644807

SN - 9789819981373

T3 - Communications in Computer and Information Science

SP - 362

EP - 375

BT - Neural Information Processing - 30th International Conference, ICONIP 2023, Proceedings

A2 - Luo, Biao

A2 - Cheng, Long

A2 - Wu, Zheng-Guang

A2 - Li, Hongyi

A2 - Li, Chaojie

PB - Springer Science and Business Media Deutschland GmbH

T2 - 30th International Conference on Neural Information Processing, ICONIP 2023

Y2 - 20 November 2023 through 23 November 2023

ER -

Yu X, Li Z, Qiao X, Tan Y , Li Y, Zhang L. A Stealth Security Hardening Method Based on SSD Firmware Function Extension. In Luo B, Cheng L, Wu ZG, Li H, Li C, editors, Neural Information Processing - 30th International Conference, ICONIP 2023, Proceedings. Springer Science and Business Media Deutschland GmbH. 2024. p. 362-375. (Communications in Computer and Information Science). doi: 10.1007/978-981-99-8138-0_29

A Stealth Security Hardening Method Based on SSD Firmware Function Extension

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this