An integrity assurance mechanism for run-time programs

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 5487, Issue , 2009, Pages 389-405

  Xu, Ziyao ^a,b   He, Yeping ^a   Deng, Lingli ^a,b  

^a INSTITUTE OF SOFTWARE   (China)

^b UNIVERSITY OF CHINESE ACADEMY OF SCIENCES   (China)

Author keywords

Integrity assurance; Trusted computing; Virtual machine monitor; Virtual trusted platform module

Indexed keywords

DYNAMIC INTEGRITY; HYPERVISOR; INTEGRITY ASSURANCE; INTEGRITY MEASUREMENT; RUNTIME; TRUSTED COMPUTING; TRUSTED COMPUTING TECHNOLOGY; VIRTUAL MACHINE MONITOR; VIRTUAL TRUSTED PLATFORM MODULE;

COMPUTER SCIENCE; CRYPTOGRAPHY;

QUALITY ASSURANCE;

EID: 67650112854     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-642-01440-6_29     Document Type: Conference Paper

References (27)

1. Garfinkel, T., Rosenblum, M., Boneh, D.: Flexible os support and applications for trusted computing. In: 9th conference on Hot Topics in Operating Systems, pp. 25-125 USENIX Association, Berkeley (2003)
2. Garfinkel, T., Pfaff, B., Chow, J., Rosenblum, M., Boneh, D.: Terra: a virtual machine-based platform for trusted computing. ACM SIGOPS Oper. Syst. Rev. 37(5), 193-206 (2003) (Pubitemid 40929697)
3. TCG specification architecture overview revision 1.4, https://www.trustedcomputinggroup.org/specs/IWG
4. Tpm main specification version 1.2 revision 103 part1&2&3, https://www.trustedcomputinggroup.org/specs/TPM
5. Sailer, R., Zhang, X., Jaeger, T., van Doorn, L.: Design and implementation of a tcg-based integrity measurement architecture. In: 13th conference on USENIX Security Symposium, pp. 223-238. USENIX Association, Berkeley (2004)
6. Jaeger, T., Sailer, R., Shankar, U.: Prima: policy-reduced integrity measurement architecture. In: 11th ACM symposium on Access control models and technologies, pp. 19-28. ACM Press, New York (2006) (Pubitemid 44300738)
7. National Institute of Standards and Technology: Secure Hash Standard (SHA-1). pp. 180-181. Federal Information Processing Standards Publication (1993)
8. Seshadri, A., Luk, M., Shi, E., Perrig, A., van Doorn, L., Khosla, P.: Pioneer: verifying code integrity and enforcing untampered code execution on legacy systems. In: 20th ACM symposium on Operating systems principles, pp. 1-16. ACM Press, New York (2005) (Pubitemid 44892201)
9. Shi, E., Perrig, A., Doorn, L.V.: Bind: A fine-grained attestation service for secure distributed systems. In: 2005 IEEE Symposium on Security and Privacy, pp. 154-168. IEEE Press, Washington (2005) (Pubitemid 41543653)
10. Goldberg, R.: Survey of Virtual Machine Research. IEEE Computer 7(6), 34-45 (1974)
11. AMD Corporation: Secure virtual machine architecture reference manual. Technical report (2005)
12. Intel Corporation: Intel vanderpool technology for ia-32 processors(vt-x) preliminary specification. Technical Report, Intel C97063-001 (2005)
13. Barham, P., Dragovic, B., Fraser, K., Hand, S., Harris, T., Ho, A., Neugebauer, R., Pratt, I., Warfield, A.: Xen and the art of virtualization. ACM SIGOPS Oper. Syst. Rev. 37(5), 164-177 (2003) (Pubitemid 40929695)
14. Berger, S., Cáceres, R., Goldman, K.A., Perez, R., Sailer, R., van Doorn, L.: vtpm: Virtualizing the trusted platform module. In: 15th conference on USENIX Security Symposium, pp. 305-320. USENIX Association, Berkeley (2006)
15. Brickell, E., Camenisch, J., Chen, L.: Direct anonymous attestation. In: 11th ACM conference on Computer and communications security, pp. 132-145. ACM Press, New York (2004) (Pubitemid 40338196)
16. Seshadri, A., Perrig, A., Doorn, L.V., Khosla, P.: Swatt: Software-based attestation for embedded devices. In: 2004 IEEE Symposium on Security and Privacy, pp. 272- 282. IEEE Press, Washington (2004)
17. Haldar, V., Chandra, D., Franz, M.: Semantic remote attestation: a virtual machine directed approach to trusted computing. In: 3rd conference on Virtual Machine Research And Technology Symposium, p. 3. USENIX Association, Berkeley (2004)
18. Sadeghi, A.R., Stuble, C.: Property-based attestation for computing platforms: caring about properties, not mechanisms. In: 2004 workshop on New security paradigms, pp. 67-77. ACM Press, New York (2004)
19. Sailer, R., Jaeger, T., Zhang, X., van Doorn, L.: Attestation-based policy enforcement for remote access. In: 11th ACM conference on Computer and communications security, pp. 308-317. ACM Press, New York (2004) (Pubitemid 40338212)
20. Shankar, U., Jaeger, T., Sailer, R.: Toward automated information-flow integrity verification for security-critical applications. In: 2006 ISOC Networked and Distributed Systems Security Symposium, San Diego (2006)
21. Maruyama, H., Seliger, F., Nagaratnam, N., Ebringer, T., Munetoh, S., Yoshihama, S., Nakamura, T.: Trusted platform on demand. Technical Report RT0564, IBM Tokyo Research Laboratory (2004)
22. Sandhu, R., Zhang, X.: Peer-to-peer access control architecture using trusted computing technology. In: 10th ACM symposium on Access control models and technologies, pp. 147-158. ACM Press, New York (2005) (Pubitemid 43087471)
23. Sandhu, R., Ranganathan, K., Zhang, X.: Secure information sharing enabled by trusted computing and pei models. In: 2006 ACM Symposium on Information, computer and communications security, pp. 2-12. ACM Press, New York (2006) (Pubitemid 46644718)
24. Zhang, X., Chen, S., Sandhu, R.: Enhancing data authenticity and integrity in p2p systems. IEEE Internet Computing 9(6), 42-49 (2005) (Pubitemid 43051367)
25. Sailer, R., Jaeger, T., Valdez, E., Caceres, R., Perez, R., Berger, S., Griffin, J.L., van Doorn, L.: Building a mac-based security architecture for the xen open-source hypervisor. In: 21st Annual Computer Security Applications Conference, pp. 276-285 IEEE Press, Washington (2005) (Pubitemid 46116484)
26. Zhang, X., Covington, M.J., Chen, S., Sandhu, R.: Securebus: towards applicationtransparent trusted computing with mandatory access control. In: 2nd ACM symposium on Information, computer and communications security, pp. 117-126. ACM Press, New York (2007) (Pubitemid 47479233)
27. Griffin, J., Jaeger, T., Perez, R., Sailer, R., van Doorn, L., Caceres, R.: Trusted virtual domains: Toward secure distributed services. In: 1st Workshop on Hot Topics in System Dependability (2005