Hardware-enforced Protection against Software Reverse-Engineering based on an Instruction Set Encoding

Authors:
Jean-Luc Danger;Sylvain Guilley;Florian Praden
Affiliations:
Institut Mines-Té/lé/com/ Té/lé/com ParisTech/ CNRS LTCI/ Secure-IC S.A.S.;Institut Mines-Té/lé/com/ Té/lé/com ParisTech/ CNRS LTCI/ Secure-IC S.A.S.;Institut Mines-Té/lé/com/ Té/lé/com ParisTech/ CNRS LTCI/ Secure-IC S.A.S.
Venue:
Proceedings of ACM SIGPLAN on Program Protection and Reverse Engineering Workshop 2014
Year:
2014

Citing 16
Cited 0

Cipher Instruction Search Attack on the Bus-Encryption Security Microcontroller DS5002FP

IEEE Transactions on Computers
Reducing the Memory Complexity of Type-Inference Algorithms

ICICS '02 Proceedings of the 4th International Conference on Information and Communications Security
PROTECTING EXTERNALLY SUPPLIED SOFTWARE IN SMALL COMPUTERS

PROTECTING EXTERNALLY SUPPLIED SOFTWARE IN SMALL COMPUTERS
Obfuscation of executable code to improve resistance to static disassembly

Proceedings of the 10th ACM conference on Computer and communications security
A Fast Assembly Level Reverse Execution Method via Dynamic Slicing

Proceedings of the 26th International Conference on Software Engineering
Hardware assisted control flow obfuscation for embedded processors

Proceedings of the 2004 international conference on Compilers, architecture, and synthesis for embedded systems
Randomized instruction set emulation

ACM Transactions on Information and System Security (TISSEC)
Deobfuscation: Reverse Engineering Obfuscated Code

WCRE '05 Proceedings of the 12th Working Conference on Reverse Engineering
Manufacturing opaque predicates in distributed systems for code obfuscation

ACSC '06 Proceedings of the 29th Australasian Computer Science Conference - Volume 48
Metrics-based Evaluation of Slicing Obfuscations

IAS '07 Proceedings of the Third International Symposium on Information Assurance and Security
Slicing obfuscations: design, correctness, and evaluation

Proceedings of the 2007 ACM workshop on Digital Rights Management
PE-ICE: Parallelized Encryption and Integrity Checking Engine

DDECS '06 Proceedings of the 2006 IEEE Design and Diagnostics of Electronic Circuits and systems
Control flow obfuscation with information flow tracking

Proceedings of the 42nd Annual IEEE/ACM International Symposium on Microarchitecture
SecBus: operating system controlled hierarchical page-based memory bus protection

Proceedings of the Conference on Design, Automation and Test in Europe
Enforcing kernel constraints by hardware-assisted virtualization

Journal in Computer Virology
A survey of control-flow obfuscations

ICISS'06 Proceedings of the Second international conference on Information Systems Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Software programs are prone to reverse-engineering. Protection usually consists either in obfuscation or Randomized Instruction Set Emulation (RISE). In this article, we explore a mixed software/hardware RISE suitable for embedded systems. This solution is very easy to implement on any open CPU core (LEON, openRISC, LatticeMicro32, etc.), as it implies only localized changes at the latest stage of the code execution hardware, which makes Dallas and DMA attacks unsuccessful. Similarly, alternations in the software development flow are minor and straightforward. All in one, our study shows that an easy protection can be attained at virtually no overhead cost if both the hardware and the software are customized.