TY - JOUR
T1 - TrustFlow-X
T2 - A Practical Framework for Fine-grained Control-flow Integrity in Critical Systems
AU - Bresch, Cyril
AU - Hély, David
AU - Lysecky, Roman
AU - Chollet, Stéphanie
AU - Parissis, Ioannis
N1 - Funding Information:
This work is carried out under the SERENE-IoT project, a project labeled within the framework of PENTA, the EUREKA cluster for Application and Technology Research in Europe on NanoElectronics. This work is supported by the French National Research Agency in the framework of the “investissement d’avenir” program (ANR-15-IDEX-02). This research was partially supported by the National Science Foundation under Grant CNS-1615890. Authors’ addresses: C. Bresch, D. Hély, S. Chollet, and I. Parissis, LCIS Grenoble Alpes University, Valence, France; emails: {cyril.bresch, david.hely, stephanie.chollet, ioannis.parissis}@lcis.grenoble-inp.fr; R. Lysecky, University of Arizona, Tucson, Arizona, United States; email: rlysecky@arizona.edu. Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from permissions@acm.org. © 2020 Association for Computing Machinery. 1539-9087/2020/09-ART36 $15.00 https://doi.org/10.1145/3398327
Publisher Copyright:
© 2020 ACM.
PY - 2020/11
Y1 - 2020/11
N2 - This article addresses the challenges of memory safety in life-critical medical devices. Since the last decade, healthcare manufacturers have embraced the Internet of Things, pushing technological innovations to increase market share. Medical devices, including the most critical ones, tend to be increasingly connected to the Internet. Unfortunately, as critical devices often rely on unsafe programming languages such as C, they are no exception to memory safety issues. Given a memory vulnerability, a skillful attacker can take over a system and perform remote code execution. Combined with the fact that medical devices directly impact the safety of their users, a security vulnerability can lead to disastrous scenarios. To address this issue, this article presents TrustFlow-X, a novel hardware/software co-designed framework that provides efficient fine-grained control-flow integrity protection against memory-based attacks. The TrustFlow-X framework is composed of an LLVM-based compiler toolchain that generates a secure code. This secure code is then executed on an extended RISC-V processor that keeps track of sensitive data using a trusted memory. The obtained results show that the contribution is practical, providing a high level of trust in life-critical embedded systems.
AB - This article addresses the challenges of memory safety in life-critical medical devices. Since the last decade, healthcare manufacturers have embraced the Internet of Things, pushing technological innovations to increase market share. Medical devices, including the most critical ones, tend to be increasingly connected to the Internet. Unfortunately, as critical devices often rely on unsafe programming languages such as C, they are no exception to memory safety issues. Given a memory vulnerability, a skillful attacker can take over a system and perform remote code execution. Combined with the fact that medical devices directly impact the safety of their users, a security vulnerability can lead to disastrous scenarios. To address this issue, this article presents TrustFlow-X, a novel hardware/software co-designed framework that provides efficient fine-grained control-flow integrity protection against memory-based attacks. The TrustFlow-X framework is composed of an LLVM-based compiler toolchain that generates a secure code. This secure code is then executed on an extended RISC-V processor that keeps track of sensitive data using a trusted memory. The obtained results show that the contribution is practical, providing a high level of trust in life-critical embedded systems.
KW - Memory safety
KW - compiler
KW - control-flow integrity
KW - processor architecture
UR - http://www.scopus.com/inward/record.url?scp=85096870351&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85096870351&partnerID=8YFLogxK
U2 - 10.1145/3398327
DO - 10.1145/3398327
M3 - Article
AN - SCOPUS:85096870351
SN - 1539-9087
VL - 19
JO - Transactions on Embedded Computing Systems
JF - Transactions on Embedded Computing Systems
IS - 5
M1 - 3398327
ER -