Protection of Software-based Survivability Mechanisms

Abstract

Many existing survivability mechanisms rely on software-based system monitoring and control. Some of the software resides on application hosts that are not necessarily trustworthy. The integrity of these software components is therefore essential to the reliability and trustworthiness of the survivability scheme. In this paper we address the problem of protecting trusted software on untrustworthy hosts by software transformations. Our techniques include a systematic introduction of aliases in combination with a break-down of the program control-flow; transforming high-level control transfers to indirect addressing through aliases pointers. In so doing, we transform programs to a form that yields data flow information very slowly and/or with little precision. We present a theoretical result which shows that a precise analysis of the transformed program, in the general case, is NP-hard and demonstrate the applicability of our techniques with empirical results.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2001
Accession Number
ADA466288

Entities

People

  • Chenxi Wang
  • Jack Davidson
  • John Knight
  • Jonathan Hill

Organizations

  • University of Virginia

Tags

Communities of Interest

  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Algorithms
  • Analyzers
  • Compilers
  • Computations
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Detection
  • Intrusion
  • Intrusion Detection
  • Intrusion Detectors
  • Language
  • Precision
  • Programming Languages
  • Reliability
  • Survivability

Fields of Study

  • Computer science
  • Engineering

Readers

  • Cybersecurity.
  • Operations Research
  • Software Engineering.