A hardware coprocessor for Zynq-based Dynamic Information Flow Tracking

Abstract : This talk introduces an efficient and portable approach for DIFT (Dynamic Information Flow Tracking) implementations on recon gurable chips. DIFT aims to track the application control flow by adding metadata (also known as tags) to information containers (e.g. registers, memory addresses, ...), propagating and checking it at runtime. These approaches have been successfully used against a wide range of attacks including bu er over ow, SQL injections and so on. Existing DIFT solutions are either hardly portable or bring unsatisfactory time overheads. For example, DIFT in software brings an overhead of at least 300% and can rise up to 3700%. Our chosen approach conists of using a dedicated coprocessor to decouple main computation (application) from tags computation. To efficiently retrieve information on executed instructions by the main CPU, ARM Coresight components are used to export CPU trace towards FPGA part of Zynq SoC. In addition to trace, static analysis needs to be done to get dependencies between information containers. This talk will present our chosen approach, ongoing work on first prototype and rst results. Existing DIFT approaches and ARM Coresight components will also be discussed.
Type de document :
Communication dans un congrès
14th International Workshop on Cryptographic architectures embedded in logic devices (CryptArchi), Jun 2016, La Grande Motte, France. 2016
Liste complète des métadonnées

Littérature citée [8 références]  Voir  Masquer  Télécharger

https://hal-centralesupelec.archives-ouvertes.fr/hal-01341830
Contributeur : Pascal Cotret <>
Soumis le : lundi 11 juillet 2016 - 10:22:09
Dernière modification le : mercredi 16 mai 2018 - 11:23:51

Identifiants

  • HAL Id : hal-01341830, version 1

Citation

Muhammad Abdul Wahab, Christophe Moy, Pascal Cotret. A hardware coprocessor for Zynq-based Dynamic Information Flow Tracking. 14th International Workshop on Cryptographic architectures embedded in logic devices (CryptArchi), Jun 2016, La Grande Motte, France. 2016. 〈hal-01341830〉

Partager

Métriques

Consultations de la notice

1199

Téléchargements de fichiers

417