Robust combiners for software hardening

Authors:
Amir Herzberg;Haya Shulman
Affiliations:
Bar Ilan University, Department of Computer Science, Ramat Gan, Israel;Bar Ilan University, Department of Computer Science, Ramat Gan, Israel
Venue:
TRUST'10 Proceedings of the 3rd international conference on Trust and trustworthy computing
Year:
2010

Citing 7
Cited 0

Protecting the creation of digital signatures with trusted computing platform technology against attacks by Trojan Horse programs

Sec '01 Proceedings of the 16th international conference on Information security: Trusted information: the new decade challenge
The Design of Rijndael

The Design of Rijndael
Watermarking, tamper-proffing, and obfuscation: tools for software protection

IEEE Transactions on Software Engineering
One-Round Secure Computation and Secure Autonomous Mobile Agents

ICALP '00 Proceedings of the 27th International Colloquium on Automata, Languages and Programming
Cryptographic Security for Mobile Code

SP '01 Proceedings of the 2001 IEEE Symposium on Security and Privacy
On robust combiners for oblivious transfer and other primitives

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
On robust combiners for private information retrieval and other primitives

CRYPTO'06 Proceedings of the 26th annual international conference on Advances in Cryptology

Quantified Score

Hi-index	0.00

Visualization

Abstract

Practical software hardening schemes, as well as practical encryption schemes, e.g., AES, are heuristic and do not rely on provable security. One technique to enhance security is robust combiners. An algorithm C is a robust combiner for specification S, e.g., privacy, if for any two implementations X and Y , of a cryptographic scheme, the combined scheme C(X, Y ) satisfies S provided either X or Y satisfy S. We present the first robust combiners for software hardening, specifically for White-Box Remote Program Execution (WBRPE). WBRPE is a software hardening technique that is employed to protect execution of programs in remote, hostile environment. WBRPE provides a software only platform allowing secure execution of programs on untrusted, remote hosts, ensuring privacy of the program, and of the inputs to the program, as well as privacy and integrity of the result of the computation. Robust combiners are particularly important for software hardening, where there is no standard whose security is established. In addition, robust combiners for software hardening are interesting from software engineering perspective since they introduce new techniques of reductions and code manipulation.