TY - GEN
T1 - Code Decoupling Execution Isolating Based on TF Card Firmware Extension
AU - Shi, Zhiwei
AU - Chen, Tian
AU - Xue, Yuan
AU - Li, Yuanzhang
AU - Zhang, Quanxin
AU - Tan, Yu An
AU - Hu, Jingjing
N1 - Publisher Copyright:
© 2021 IEEE.
PY - 2021
Y1 - 2021
N2 - Currently, most of the research on code protection is focused on a single execution domain. The penetration and cracking means for this single execution environment pose great challenges to the secure execution of the code. For example, fuzzy testing and symbolic execution can effectively discover code vulnerabilities. Page execution attribute protection can be bypassed using the Return-oriented programming (ROP) attack or other ways. This paper proposes an asymmetric heterogeneous execution environment based on TF card firmware extension for the secure code. By modifying the TF card firmware to decouple the security-critical code to the host CPU and a TF card controller, the critical code runs separately in two or more execution environments. It can effectively fight against the penetration for a single execution environment, enhance the anti-analysis, anti-penetration and anti-cracking abilities, and provide reliable protection for the operation of core critical devices, including servers and embedded systems.
AB - Currently, most of the research on code protection is focused on a single execution domain. The penetration and cracking means for this single execution environment pose great challenges to the secure execution of the code. For example, fuzzy testing and symbolic execution can effectively discover code vulnerabilities. Page execution attribute protection can be bypassed using the Return-oriented programming (ROP) attack or other ways. This paper proposes an asymmetric heterogeneous execution environment based on TF card firmware extension for the secure code. By modifying the TF card firmware to decouple the security-critical code to the host CPU and a TF card controller, the critical code runs separately in two or more execution environments. It can effectively fight against the penetration for a single execution environment, enhance the anti-analysis, anti-penetration and anti-cracking abilities, and provide reliable protection for the operation of core critical devices, including servers and embedded systems.
KW - TF card firmware extension
KW - asymmetric heterogeneous
KW - decoupling
KW - execution environment
KW - secure code
UR - http://www.scopus.com/inward/record.url?scp=85128741284&partnerID=8YFLogxK
U2 - 10.1109/DSC53577.2021.00063
DO - 10.1109/DSC53577.2021.00063
M3 - Conference contribution
AN - SCOPUS:85128741284
T3 - Proceedings - 2021 IEEE 6th International Conference on Data Science in Cyberspace, DSC 2021
SP - 403
EP - 408
BT - Proceedings - 2021 IEEE 6th International Conference on Data Science in Cyberspace, DSC 2021
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 6th IEEE International Conference on Data Science in Cyberspace, DSC 2021
Y2 - 9 October 2021 through 11 October 2021
ER -