Building a Trusted Path for Applications Using COTS Components

Abstract

Client computers are often a weak link in a technical network infrastructure. Increasing the security of client systems and applications against malicious software attacks increases the security of the network as a whole. Our work solves integrity and authenticity of input, confidentiality, integrity and authenticity of output. We present components to integrate a trusted path into an application to directly communicate with a user at a personal computer. This allows security sensitive parts of applications to continue operating while being attacked with malicious software in an event-driven system. Our approach uses widely employed COTS software - DirectX - and can be varied in design and implementation, hence making it more difficult to defeat with generic attack tools.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Nov 01, 2004
Accession Number
ADA448490

Entities

People

  • Hanno Langweg

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Abstracts
  • Authentication
  • Biometric Security
  • Computer Access Control
  • Computer Program Reliability
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Malware
  • Operating Systems
  • Reliability
  • Security
  • Standards
  • Trojan Horse
  • Universities
  • User Interface

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Database Systems and Applications