Local-memory-based integrity checking for embedded systems

Ning Li; Tatsuo Nakajima

doi:10.1109/CSE.2013.114

Local-memory-based integrity checking for embedded systems

Ning Li, Tatsuo Nakajima

School of Fundamental Science and Engineering

Research output: Contribution to conference › Paper › peer-review

2 Citations (Scopus)

Abstract

The Limited Local Memory (LLM) machine architecture is proposed to improve the security on a multi-core processor with a small trusted computing base (TCB). It uses one privileged core's local memory for executing detection tools to monitor the state of a target OS running on other cores, depending on isolation of the privileged core to ensure the reliability of the detection tools. It has some characteristics fitting embedded systems, such as causing little overhead, a small TCB and requiring minimal modification on the target OS. However, in current research, the LLM architecture was only emulated in QEMU, a virtual machine monitor, and assumed a limited and somehow big space of the local memory that may rarely be equipped on embedded processors. In this paper, we apply this method to a real embedded platform with a LLM-similar hardware configuration, but equipped with a much smaller local memory. Firstly, we propose design details to apply our system to a local memory with such a small size. Then we evaluate the influence that this method would cause to the detection tools and present some hardware recommendations to make the LLM architecture more applicable on real processors. Our research can illustrate the efficiency of the LLM architecture and generalize the application of it for embedded systems by reducing the size requirement on the local memory.

Original language	English
Pages	742-750
Number of pages	9
DOIs	https://doi.org/10.1109/CSE.2013.114
Publication status	Published - 2013
Event	2013 16th IEEE International Conference on Computational Science and Engineering, CSE 2013 - Sydney, NSW, Australia Duration: 2013 Dec 3 → 2013 Dec 5

Conference

Conference	2013 16th IEEE International Conference on Computational Science and Engineering, CSE 2013
Country/Territory	Australia
City	Sydney, NSW
Period	13/12/3 → 13/12/5

Keywords

Embedded systems
Multi-core
Security
System architecture

ASJC Scopus subject areas

Computer Science (miscellaneous)

Access to Document

10.1109/CSE.2013.114

Cite this

@conference{1ed860a2f77247e5b4d0af4d7ca83d0b,

title = "Local-memory-based integrity checking for embedded systems",

abstract = "The Limited Local Memory (LLM) machine architecture is proposed to improve the security on a multi-core processor with a small trusted computing base (TCB). It uses one privileged core's local memory for executing detection tools to monitor the state of a target OS running on other cores, depending on isolation of the privileged core to ensure the reliability of the detection tools. It has some characteristics fitting embedded systems, such as causing little overhead, a small TCB and requiring minimal modification on the target OS. However, in current research, the LLM architecture was only emulated in QEMU, a virtual machine monitor, and assumed a limited and somehow big space of the local memory that may rarely be equipped on embedded processors. In this paper, we apply this method to a real embedded platform with a LLM-similar hardware configuration, but equipped with a much smaller local memory. Firstly, we propose design details to apply our system to a local memory with such a small size. Then we evaluate the influence that this method would cause to the detection tools and present some hardware recommendations to make the LLM architecture more applicable on real processors. Our research can illustrate the efficiency of the LLM architecture and generalize the application of it for embedded systems by reducing the size requirement on the local memory.",

keywords = "Embedded systems, Multi-core, Security, System architecture",

author = "Ning Li and Tatsuo Nakajima",

year = "2013",

doi = "10.1109/CSE.2013.114",

language = "English",

pages = "742--750",

note = "2013 16th IEEE International Conference on Computational Science and Engineering, CSE 2013 ; Conference date: 03-12-2013 Through 05-12-2013",

}

TY - CONF

T1 - Local-memory-based integrity checking for embedded systems

AU - Li, Ning

AU - Nakajima, Tatsuo

PY - 2013

Y1 - 2013

N2 - The Limited Local Memory (LLM) machine architecture is proposed to improve the security on a multi-core processor with a small trusted computing base (TCB). It uses one privileged core's local memory for executing detection tools to monitor the state of a target OS running on other cores, depending on isolation of the privileged core to ensure the reliability of the detection tools. It has some characteristics fitting embedded systems, such as causing little overhead, a small TCB and requiring minimal modification on the target OS. However, in current research, the LLM architecture was only emulated in QEMU, a virtual machine monitor, and assumed a limited and somehow big space of the local memory that may rarely be equipped on embedded processors. In this paper, we apply this method to a real embedded platform with a LLM-similar hardware configuration, but equipped with a much smaller local memory. Firstly, we propose design details to apply our system to a local memory with such a small size. Then we evaluate the influence that this method would cause to the detection tools and present some hardware recommendations to make the LLM architecture more applicable on real processors. Our research can illustrate the efficiency of the LLM architecture and generalize the application of it for embedded systems by reducing the size requirement on the local memory.

AB - The Limited Local Memory (LLM) machine architecture is proposed to improve the security on a multi-core processor with a small trusted computing base (TCB). It uses one privileged core's local memory for executing detection tools to monitor the state of a target OS running on other cores, depending on isolation of the privileged core to ensure the reliability of the detection tools. It has some characteristics fitting embedded systems, such as causing little overhead, a small TCB and requiring minimal modification on the target OS. However, in current research, the LLM architecture was only emulated in QEMU, a virtual machine monitor, and assumed a limited and somehow big space of the local memory that may rarely be equipped on embedded processors. In this paper, we apply this method to a real embedded platform with a LLM-similar hardware configuration, but equipped with a much smaller local memory. Firstly, we propose design details to apply our system to a local memory with such a small size. Then we evaluate the influence that this method would cause to the detection tools and present some hardware recommendations to make the LLM architecture more applicable on real processors. Our research can illustrate the efficiency of the LLM architecture and generalize the application of it for embedded systems by reducing the size requirement on the local memory.

KW - Embedded systems

KW - Multi-core

KW - Security

KW - System architecture

UR - http://www.scopus.com/inward/record.url?scp=84900357962&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84900357962&partnerID=8YFLogxK

U2 - 10.1109/CSE.2013.114

DO - 10.1109/CSE.2013.114

M3 - Paper

AN - SCOPUS:84900357962

SP - 742

EP - 750

T2 - 2013 16th IEEE International Conference on Computational Science and Engineering, CSE 2013

Y2 - 3 December 2013 through 5 December 2013

ER -

Local-memory-based integrity checking for embedded systems

Abstract

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this