Improving Cost, Performance, and Security of Memory Encryption and Authentication

Yan, Chenyu; Englender, Daniel; Prvulovic, Milos; Rogers, Brian; Solihin, Yan

doi:10.1109/isca.2006.22

Cited by 54 publications

(12 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Through the experiment, we conclude that the block cipher does generate unique keys for different inputs and the key values generated are random. With the given security evaluation Formulas (1) and (5), we evaluated the security of designs proposed in [3] (a COB design) and [6] (a RNCB design), based on the block cipher AES and 128-bit block size. Attack success probabilities of the two designs against the random and used-key attacks are summarized in Table 1.…”

Section: Methodsmentioning

confidence: 99%

“…Given such a design, for each k-bit key, m-bit memory address, only k − m-bit counter value needs to be saved. To further reduce the storage memory consumption, a design with two-level counters was proposed [3] (Figure 2(b)); it consumes less on-chip memory than the one-level counter design, but may incurs re-encryption when the second level counter is overflowed. An alternative solution for reducing the memory consumption is the design proposed in [6] (as shown in Figure 2(c)).…”

Section: Background Of Dynamic Key Design For Memory Data Encryption mentioning

confidence: 99%

“…• a thorough investigation on how dynamic key should be structured for low on-chip memory cost and high security, • a novel quantitative security evaluation approach that is based on both the randomness and the uniqueness of key values, and • we compared two typical designs [3] and [6] and found that the design by [3] is more secure than that by [6] for a limit number of keys to be used; but when the number of keys used exceeds this limit, the design of [6] becomes better. The rest of the paper is arranged as follows.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Dynamic Encryption Key Design and Its Security Evaluation for Memory Data Protection in Embedded Systems

Liu

Guo

2014

2014 International Conference on IT Convergence and Security (ICITCS)

View full text Add to dashboard Cite

show abstract

Section: Methodsmentioning

confidence: 99%

Section: Background Of Dynamic Key Design For Memory Data Encryption mentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Dynamic Encryption Key Design and Its Security Evaluation for Memory Data Protection in Embedded Systems

Liu

Guo

2014

2014 International Conference on IT Convergence and Security (ICITCS)

View full text Add to dashboard Cite

show abstract

“…However, their architecture assumes extensive operating system and compiler support. Yan [18] describes a sign-and-verify architecture using Galois/Counter Mode cryptography. They protect dynamic data using split sequence numbers to reduce memory overhead and reduce the probability of a sequence number rollover.…”

Section: Related Workmentioning

confidence: 99%

Hardware-Enhanced Protection for the Runtime Data Security in Embedded Systems

et al. 2019

View full text Add to dashboard Cite

At present, the embedded systems are facing various kinds of attacks, especially for the data stored in the external memories. This paper presents a hardware-enhanced protection method to protect the data integrity and confidentiality at runtime, preventing the data from spoofing attack, splicing attack, replay attack, and some malicious analysis. For the integrity protection, the signature is calculated by the hardware implemented Lhash engine before the data sending off the chip, and the signature of the data block is recalculated and compared with the decrypted one at the load time. For the confidentiality protection, an AES encryption engine is used to generate the key stream, the plain data and the cipher data can translate through a simple XOR operation. The hardware cryptographic engines are optimized to work simultaneously with the memory access operation, which reduces the hardware overhead and the performance overhead. We implement the proposed architecture within OR1200 processor on Xilinx Virtex 5 FPGA platform. The experiment results show that the proposed hardware-enhanced protection method can preserve the integrity and confidentiality of the runtime data in the embedded systems with low power consumption and a marginal area footprint. The performance overhead is less than 2.27% according to the selected benchmarks.

show abstract

“…The second category of the proposed solutions for memory encryption is based on hardware modifications. In particular, several publications [18][19][20][21][22][23] [40] for single processor systems propose the addition of an encryption unit to cipher and decipher data from and to the volatile memory. Moreover, for multiprocessor systems, [24] proposes a shared bus, containing a crypto engine, to coordinate and secure traffic between processors, while [25] [26] proposed the use of sequence numbers for the coordination between different processors.…”

Section: Related Workmentioning

confidence: 99%

Protecting Sensitive Information in the Volatile Memory from Disclosure Attacks

Malliaros

Ntantogian

Xenakis

2016

2016 11th International Conference on Availability, Reliability and Security (ARES)

View full text Add to dashboard Cite

Abstract-The protection of the volatile memory data is an issue of crucial importance, since authentication credentials and cryptographic keys remain in the volatile memory. For this reason, the volatile memory has become a prime target for memory scrapers, which specifically target the volatile memory, in order to steal sensitive information, such as credit card numbers. This paper investigates security measures, to protect sensitive information in the volatile memory from disclosure attacks. Experimental analysis is performed to investigate whether the operating systems (Windows or Linux) perform data zeroization in the volatile memory. Results show that Windows kernel zeroize data after a process termination, while the Linux kernel does not. Next, we examine functions and software techniques in C/C++ programming language that can be used by developers to modify at process runtime the contents of the allocated blocks in the volatile memory. We have identified that only the Windows operating system provide a specific function named SecureZeroMemory that can reliably zeroize data. Finally, driven by the fact that malware scrapers primarily target web browsers, we examine whether it is feasible to extract authentication credentials from the volatile memory allocated by web browsers. The presented results show that in most cases we can successfully recover user authentication credentials from all the web browsers except when the user has closed the tab that used to access the website.

show abstract

Improving Cost, Performance, and Security of Memory Encryption and Authentication

Cited by 54 publications

References 11 publications

Dynamic Encryption Key Design and Its Security Evaluation for Memory Data Protection in Embedded Systems

Dynamic Encryption Key Design and Its Security Evaluation for Memory Data Protection in Embedded Systems

Hardware-Enhanced Protection for the Runtime Data Security in Embedded Systems

Protecting Sensitive Information in the Volatile Memory from Disclosure Attacks

Contact Info

Product

Resources

About