Title :
Automated Software Protection through Program Externalization on Memory-Limited Secure Devices
Author :
Chaumette, Serge ; Ly, Olivier ; Tabary, Renaud
Author_Institution :
Lab. Bordelais de Rech. en Inf., Univ. of Bordeaux, Bordeaux, France
Abstract :
In this paper we propose a hardware assisted software protection scheme that relies on the use of a resource-limited secure token (e.g. a smart card). The protection consists in externalizing the execution of the sensitive pieces of code of the application to be protected to the token block by block, while the unsensitive code is still executed inside the untrusted computer. We define a generic process: the protection is enforced automatically. Our method relies on static analysis techniques that are used to infer the parts of code to be externalized together with run-time externalization protocol. We have developed a software environment implementing this technology for Java applications.
Keywords :
program diagnostics; security of data; Java application; automated software protection; hardware assisted software protection; memory-limited secure device; program externalization; resource-limited secure token; run-time externalization protocol; smart card; static analysis; Java; code externalization; software protection;
Conference_Titel :
Embedded and Ubiquitous Computing (EUC), 2010 IEEE/IFIP 8th International Conference on
Conference_Location :
Hong Kong
Print_ISBN :
978-1-4244-9719-5
Electronic_ISBN :
978-0-7695-4322-2
DOI :
10.1109/EUC.2010.122
