Title :
Fault Tolerance & Testable Software Security: A Method of Quantifiable Non-Malleability with Respect to Time
Author :
Sharp, Dave B. ; Nayak, Amiya ; Goel, Nita
Author_Institution :
Univ. of Ottawa, Ottawa
Abstract :
In this paper, we demonstrate there exists practical limits to the recoverability and integrity verification (non-malleability) of software with respect to time a property to the best of our knowledge not demonstrated previously; this in turn, implies practical limits to software security using current existing processing hardware. Non-malleability applied to software implies that it should be infeasible for an attacker to modify a piece of software, thus creating a software fault. Given the recoverability limitation, we demonstrate a quantifiable definition for secure software with respect to integrity/tamper resistance.
Keywords :
program testing; program verification; security of data; software fault tolerance; fault tolerance; integrity verification; quantifiable nonmalleability; recoverability; software fault; testable software security; Application software; Cryptography; Data security; Fault tolerance; Hardware; Immune system; Protection; Reverse engineering; Software testing; Software tools;
Conference_Titel :
Electrical and Computer Engineering, 2007. CCECE 2007. Canadian Conference on
Conference_Location :
Vancouver, BC
Print_ISBN :
1-4244-1020-7
Electronic_ISBN :
0840-7789
DOI :
10.1109/CCECE.2007.386
