Title :
Reconfigurable Dynamic Trusted Platform Module for Control Flow Checking
Author :
Das, S. ; Wei Zhang ; Yang Liu
Author_Institution :
Sch. of Comput. Eng., Nanyang Technol. Univ., Singapore, Singapore
Abstract :
Trusted Platform Module (TPM) has gained its popularity in computing systems as a hardware security approach. TPM provides the boot time security by verifying the platform integrity including hardware and software. However, once the software is loaded, TPM can no longer protect the software execution. In this work, we propose a dynamic TPM design, which performs control flow checking to protect the program from runtime attacks. The control flow checker is integrated at the commit stage of the processor pipeline. The control flow of program is verified to defend the attacks such as stack smashing using buffer overflow and code reuse. We implement the proposed dynamic TPM design in FPGA to achieve high performance, low cost and flexibility for easy functionality upgrade based on FPGA. In our design, neither the source code nor the Instruction Set Architecture (ISA) needs to be changed. The benchmark simulations demonstrate less than 1% of performance penalty on the processor, and an effective software protection from the attacks.
Keywords :
field programmable gate arrays; formal verification; security of data; trusted computing; FPGA; buffer overflow; code reuse; control flow checking; dynamic TPM design; instruction set architecture; processor pipeline; reconfigurable dynamic trusted platform module; runtime attacks; stack smashing; Benchmark testing; Computer architecture; Field programmable gate arrays; Pipelines; Runtime; Security; Software; Control Flow Checking; Dynamic TPM; Reconfigurable Architecture; Runtime Security;
Conference_Titel :
VLSI (ISVLSI), 2014 IEEE Computer Society Annual Symposium on
Conference_Location :
Tampa, FL
Print_ISBN :
978-1-4799-3763-9
DOI :
10.1109/ISVLSI.2014.84
