Combining High-Level and Low-Level Approaches to Evaluate Software Implementations Robustness Against Multiple Fault Injection Attacks

被引：5

作者：

Riviere, Lionel ^{[1
,2
]}

Potet, Marie-Laure ^{[3
]}

Thanh-Ha Le ^{[1
]}

Bringer, Julien ^{[1
]}

Chabanne, Herve ^{[1
,2
]}

Puys, Maxime ^{[1
]}

机构：

[1] Safran Morpho, Paris, France

[2] Telecom Paristech, Paris, France

[3] Verimag, Gieres, France

来源：

FOUNDATIONS AND PRACTICE OF SECURITY (FPS 2014) | 2015年 / 8930卷

关键词：

Fault injection; Fault simulation; Instruction skipping; Control flow graph; Multiple fault; Smartcard; Embedded systems; Security;

D O I：

10.1007/978-3-319-17040-4_7

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Physical fault injections break security functionalities of algorithms by targeting their implementations. Software techniques strengthen such implementations to enhance their robustness against fault attacks. Exhaustively testing physical fault injections is time consuming and requires complex platforms. Simulation solutions are developed for this specific purpose. We chose two independent tools presented in 2014, the Laser Attack Robustness (Lazart) and the Embedded Fault Simulator (EFS) in order to evaluate software implementations against multiple fault injection attacks. Lazart and the EFS share the common goal that consists in detecting vulnerabilities in the code. However, they operate with different techniques, fault models and abstraction levels. This paper aims at exhibiting specific advantages of both approaches and proposes a combining scheme that emphasizes their complementary nature.

引用

页码：92 / 111

页数：20

共 50 条

[1] Verifying Low-Level Implementations of High-Level Datatypes
Conway, Christopher L.
Barrett, Clark
COMPUTER AIDED VERIFICATION, PROCEEDINGS, 2010, 6174 : 306 - 320
[2] Enforcing high-level protocols in low-level software
DeLine, R
Fähndrich, M
ACM SIGPLAN NOTICES, 2001, 36 (05) : 59 - 69
[3] Habituation to atrocity: low-level violence against civilians as a predictor of high-level attacks
Anderton, Charles H.
Ryan, Edward V.
JOURNAL OF GENOCIDE RESEARCH, 2016, 18 (04) : 539 - 562
[4] Investigating the Impact of High-Level Software Design on Low-Level Hardware Fault Resilience
Zhang, Bohan
Yang, Lishan
Li, Guanpeng
Xu, Hui
2023 53RD ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS - SUPPLEMENTAL VOLUME, DSN-S, 2023, : 163 - 167
[5] Comparing high-level and low-level implementations of a molecular dynamics algorithm
Travieso, G
SECOND INTERNATIONAL WORKSHOP ON HIGH-LEVEL PARALLEL PROGRAMMING MODELS AND SUPPORTIVE ENVIRONMENTS, PROCEEDINGS, 1997, : 130 - 134
[6] High-Level Simulation for Multiple Fault Injection Evaluation
Puys, Maxime
Riviere, Lionel
Bringer, Julien
Thanh-ha Le
DATA PRIVACY MANAGEMENT, AUTONOMOUS SPONTANEOUS SECURITY, AND SECURITY ASSURANCE, 2015, 8872 : 293 - 308
[7] High-Level Radio Protocol Specifications to Efficient Low-Level Implementations via Partial Evaluation
Mainland, Geoffrey
Shanmugam, Siddhanathan
PROCEEDINGS OF THE 6TH ACM SIGPLAN INTERNATIONAL WORKSHOP ON FUNCTIONAL HIGH-PERFORMANCE COMPUTING (FHPC '17), 2017, : 1 - 11
[8] The High-Level Benefits of Low-Level Sandboxing
Sammler, Michael
Garg, Deepak
Dreyer, Derek
Litak, Tadeusz
PROCEEDINGS OF THE ACM ON PROGRAMMING LANGUAGES-PACMPL, 2020, 4 (POPL):
[9] High-level views on low-level representations
Diatchki, IS
Jones, MP
Leslie, R
ACM SIGPLAN NOTICES, 2005, 40 (09) : 168 - 179
[10] LOW-LEVEL WASTE, HIGH-LEVEL PROBLEM
SKERRETT, PJ
TECHNOLOGY REVIEW, 1991, 94 (06): : 9 - &

← 1 2 3 4 5 →