A combined hardware and software architecture for secure computing

Platte, Jürg; Naroska, Edwin

doi:10.1145/1062261.1062308

Cited by 8 publications

(14 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Many solutions have been proposed to improve the protection [5][6][7][8][9][10][11][12][13]. In general, they can be categorized into three types: technology, policy, and education.…”

Section: X-axis: Countermeasuresmentioning

confidence: 99%

See 1 more Smart Citation

Challenges in Building a Trustworthy Network

Hu¹

2013

J Elec Electron Syst

View full text Add to dashboard Cite

quality control relating to security, privacy, and reliability is very difficult to achieve. Vulnerabilities could exist in some of them and trigger threats.• Difficulty in administrating network components: In case management relating to security, privacy, and reliability of network components is guaranteed, vulnerabilities of the network could be eliminated and trustworthiness of the network would be achieved. However, since network components usually cross several different domains and are managed by various administrations, the operation to ensure the protection of network security, privacy, and reliability is very complicated and difficult to achieve.• Difficulty in protecting data crossing over different network components: Although every network component could implement its own mechanisms to protect network privacy, security, and availability, there are some potential threats could exist in the gap between two components. For instance, the gap between hardware and software. Halderman et al.[14] demonstrated a technology to bypass all disk encryption methods.To conquer challenges and make it possible to build a trustworthy network, there are some regulations and policies must be implemented. This is not easy when various network domains and components are involved. However, just like the ISO 9001, it would be doable while demands increase. Trustworthy Network ModelIn this paper, we depict a novel trustworthy network model. Our approach is based on an observation that trustworthiness cannot be accomplished by technology or any countermeasure solely. It requires teamwork and needs to integrate every countermeasure together. AbstractAn open challenge in trustworthy computing is the development of a trustworthy network since network plays an essential role of current computing infrastructure (e.g., grid computing, cloud computing, etc.). In order to have a trustworthy network, security, privacy, and reliability must be protected on every major network component. For instance, if there is no trusted mechanism to enforce security protection of every data transaction on major network components, a network cannot be relied on performing trustworthy computing. It has been observed that trustworthy network cannot be practically achieved if there is no trusted integration of major network components. In this paper, we discuss the challenges in building a trustworthy network and develop a trustworthy network model that is both scalable and interoperable with existing and future network architectures.

show abstract

“…Many solutions have been proposed to improve the protection [5][6][7][8][9][10][11][12][13]. In general, they can be categorized into three types: technology, policy, and education.…”

Section: X-axis: Countermeasuresmentioning

confidence: 99%

“…Several researchers have studied the implementation of trustworthy systems [5][6][7][8][9][10][11][12][13]. However, we have observed that trustworthiness could not be achieved if there is no trusted integration of major network components.…”

Section: Introductionmentioning

confidence: 98%

Challenges in Building a Trustworthy Network

Hu¹

2013

J Elec Electron Syst

View full text Add to dashboard Cite

show abstract

“…The next paragraphs are providing a brief description of SAM's main attributes. A more detailed architectural description can be found in [2] and the design of the caches in [3].…”

Section: Sam Overviewmentioning

confidence: 99%

“…In this section, we first revisit the hashing scheme and data encryption proposed in [2,3], describing some weaknesses in security and performance. Then we propose some modifications on both the hashing and encryption schemes which improve the performance and strengthen the security.…”

Section: Hashing Scheme and Encryptionmentioning

confidence: 99%

“…These schemes must provide a strong protection without requiring too many changes from the programmers point of view to be able to reuse existing code. Some processor extensions, like AEGIS [1] and SAM [2,3], have been built to provide a secure execution environment for programs. Using these extensions, a program can be protected to prevent program code and data based attacks as well as runtime attacks.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A New Encryption and Hashing Scheme for the Security Architecture for Microprocessors

Platte

Díaz

Naroska

2006

Communications and Multimedia Security

Self Cite

View full text Add to dashboard Cite

In this paper we revisit SAM, a security architecture for microprocessors that provides memory encryption and memory verification using hash values, including a summary of its main features and an overview of other related architectures. We analyze the security of SAM architecture as originally proposed, pointing out some weaknesses in security and performance. To overcome them, we supply another hashing and protection schemes which strengthen the security and improve the performance of the first proposal. Finally, we present some experimental results comparing the old and new schemes.

show abstract