Simple and Practical Integrity Models for Binaries and Files - Trust Management IX
Conference Papers Year : 2015

Simple and Practical Integrity Models for Binaries and Files

Yongzheng Wu
Roland C. Yap
  • Function : Author
  • PersonId : 996028

Abstract

Software environments typically depend on implicit sharing of binaries where binaries are created, loaded/executed and updated dynamically which we call the binary lifecycle. Windows is one example where many attacks exploit vulnerabilities in the binary lifecycle of software. In this paper, we propose a family of binary integrity models with a simple and easy to use trust model, to help protect against such attacks. We implement a prototype in Windows which protects against a variety of common binary attacks. Our models are easy to use while maintaining existing software compatibility, i.e. work with the implicit binary lifecycle requirements of the software and assumptions on binary sharing. We also propose a conservative extension to protect critical non-binary files.
Fichier principal
Vignette du fichier
337890_1_En_3_Chapter.pdf (306.47 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01416206 , version 1 (14-12-2016)

Licence

Identifiers

Cite

Yongzheng Wu, Roland C. Yap. Simple and Practical Integrity Models for Binaries and Files. 9th IFIP International Conference on Trust Management (TM), May 2015, Hamburg, Germany. pp.30-46, ⟨10.1007/978-3-319-18491-3_3⟩. ⟨hal-01416206⟩
52 View
100 Download

Altmetric

Share

More