Combining High-Level and Low-Level Approaches to Evaluate Software Implementations Robustness Against Multiple Fault Injection Attacks

被引：5

作者：

Riviere, Lionel ^{[1
,2
]}

Potet, Marie-Laure ^{[3
]}

Thanh-Ha Le ^{[1
]}

Bringer, Julien ^{[1
]}

Chabanne, Herve ^{[1
,2
]}

Puys, Maxime ^{[1
]}

机构：

[1] Safran Morpho, Paris, France

[2] Telecom Paristech, Paris, France

[3] Verimag, Gieres, France

来源：

FOUNDATIONS AND PRACTICE OF SECURITY (FPS 2014) | 2015年 / 8930卷

关键词：

Fault injection; Fault simulation; Instruction skipping; Control flow graph; Multiple fault; Smartcard; Embedded systems; Security;

D O I：

10.1007/978-3-319-17040-4_7

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Physical fault injections break security functionalities of algorithms by targeting their implementations. Software techniques strengthen such implementations to enhance their robustness against fault attacks. Exhaustively testing physical fault injections is time consuming and requires complex platforms. Simulation solutions are developed for this specific purpose. We chose two independent tools presented in 2014, the Laser Attack Robustness (Lazart) and the Embedded Fault Simulator (EFS) in order to evaluate software implementations against multiple fault injection attacks. Lazart and the EFS share the common goal that consists in detecting vulnerabilities in the code. However, they operate with different techniques, fault models and abstraction levels. This paper aims at exhibiting specific advantages of both approaches and proposes a combining scheme that emphasizes their complementary nature.

引用

页码：92 / 111

页数：20

共 50 条

[21] High-level decisions from low-level data
Beers, SM
SMC '97 CONFERENCE PROCEEDINGS - 1997 IEEE INTERNATIONAL CONFERENCE ON SYSTEMS, MAN, AND CYBERNETICS, VOLS 1-5: CONFERENCE THEME: COMPUTATIONAL CYBERNETICS AND SIMULATION, 1997, : 1948 - 1953
[22] From Low-Level Pointers to High-Level Containers
Dudka, Kamil
Holik, Lukas
Peringer, Petr
Trtik, Marek
Vojnar, Tomas
VERIFICATION, MODEL CHECKING, AND ABSTRACT INTERPRETATION, VMCAI 2016, 2016, 9583 : 431 - 452
[23] High-Level Separation Logic for Low-Level Code
Jensen, Jonas B.
Benton, Nick
Kennedy, Andrew
ACM SIGPLAN NOTICES, 2013, 48 (01) : 301 - 313
[24] LTE-Advanced Channel Coding Generic Procedures A High-level Model To Guide Low-Level Implementations
de Figueiredo, Felipe A. P.
Lenzi, Karlo G.
Filho, Jose A. B.
Figueiredo, Fabricio L.
2013 WIRELESS TELECOMMUNICATIONS SYMPOSIUM (WTS), 2013,
[25] Accurate FIT Rate Estimation Through High-Level Software Fault Injection
Bodmann, Pablo R.
Oliveira, Daniel
Rech, Paolo
IEEE TRANSACTIONS ON NUCLEAR SCIENCE, 2022, 69 (09) : 2018 - 2026
[26] Inferring high-level behavior from low-level sensors
Patterson, DJ
Lin, LA
Fox, D
Kautz, H
UBICOMP 2003: UBIQUITOUS COMPUTING, 2003, 2864 : 73 - 89
[27] Reconciling High-Level Optimizations and Low-Level Code in LLVM
Lee, Juneyoung
Hur, Chung-Kil
Jung, Ralf
Liu, Zhengyang
Regehr, John
Lopes, Nuno P.
PROCEEDINGS OF THE ACM ON PROGRAMMING LANGUAGES-PACMPL, 2018, 2
[28] THE EFFECTS OF HIGH-LEVEL VS LOW-LEVEL RADIATION EXPOSURE
BOND, VP
BULLETIN OF THE NEW YORK ACADEMY OF MEDICINE, 1983, 59 (10) : 918 - 946
[29] LOW-LEVEL RADIOACTIVE-WASTES, HIGH-LEVEL RISK
NEWMAN, A
ENVIRONMENTAL SCIENCE & TECHNOLOGY, 1994, 28 (11) : A488 - A491
[30] Drawing the boundary between low-level and high-level mindreading
de Vignemont, Frederique
PHILOSOPHICAL STUDIES, 2009, 144 (03) : 457 - 466

← 1 2 3 4 5 →