An Architecture for Kernel-Level Verification of Executables at Run Time
نویسندگان
چکیده
Digital signatures have been proposed by several researchers as a way of preventing execution of malicious code. In this paper we propose a general architecture for performing the signature verification as part of the kernel execution process. The proposed architecture does not require any change in the interpreters used to execute code and it can accommodate any executable format. We also report on our implementation for the Linux operating system that focuses on ELF and script executables. Experimental results show that our solution is of potential interest as virtually no slowdown is experienced in the execution.
منابع مشابه
Automated Verification of RISC-V Kernel Code
The longer term goal for this project is to investigate automated verification of an exokernel[1]/microkernel. Assuming hardware virtualization support on the CPU as well as I/O devices, very few operations actually need to be mediated by the kernel [3]. And the parts that do need to be executed as privileged kernel code perform simple operations. Most of those operations will interact closely ...
متن کاملA Practical Approach to the Performance Analysis of Software Components using Calibrated Software Reliability Growth Models
Many software tools have been proposed for the purpose of performance analysis and measurement on software executables. The results produced by such tools are visually displayed based on run-time characteristics of software executables without suggesting the fitness of executables at the operational environment. This is because run-time characteristics of an executable are not static for every ...
متن کاملEffective Heterogenous Design and Co-simulation
In this chapter, we consider the problem of system-level design where subsystems are diverse. As a concrete example, consider an embedded system with the architecture shown in figure 1 (after [5]). The subsystems are implemented in both hardware and software, making this architecture a suitable candidate for hardware/software co-design. But even within the software portions, there is diversity....
متن کاملProfiling High Level Abstraction Simulators of Multiprocessor Systems
Simulation has become one of the most timeconsuming tasks in Electronic System Level design, required both on design and verification phases. As the complexity of modelled systems increases, so do the need for adequate use of available computational resources in multiprocessor computers or clusters. SystemC simulator models are designed to use only one core, even if the hardware is multi-core. ...
متن کاملDigSig: Runtime Authentication of Binaries at Kernel Level
This paper presents a Linux kernel module, DigSig, which helps system administrators control Executable and Linkable Format (ELF) binary execution and library loading based on the presence of a valid digital signature. By preventing attackers from replacing libraries and sensitive, privileged system daemons with malicious code, DigSig increases the difficulty of hiding illicit activities such a...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- Comput. J.
دوره 47 شماره
صفحات -
تاریخ انتشار 2004