Architectural Support For Improving Computer Security

Author

Jingfei Kong, University of Central Florida

Keywords

dynamic information flow, buffer overflow, phase change memory, counter-mode encryption, wear leveling, software cache-based side channel attacks, secure cache designs, informing loads

Abstract

Computer security and privacy are becoming extremely important nowadays. The task of protecting computer systems from malicious attacks and potential subsequent catastrophic losses is, however, challenged by the ever increasing complexity and size of modern hardware and software design. We propose several methods to improve computer security and privacy from architectural point of view. They provide strong protection as well as performance efficiency. In our first approach, we propose a new dynamic information flow method to protect systems from popular software attacks such as buffer overflow and format string attacks. In our second approach, we propose to deploy encryption schemes to protect the privacy of an emerging non-volatile main memory technology - phase change memory (PCM). The negative impact of the encryption schemes on PCM lifetime is evaluated and new methods including a new encryption counter scheme and an efficient error correct code (ECC) management are proposed to improve PCM lifetime. In our third approach, we deconstruct two previously proposed secure cache designs against software data-cache-based side channel attacks and demonstrate their weaknesses. We propose three hardware-software integrated approaches as secure protections against those data cache attacks. Also we propose to apply them to protect instruction caches from similar threats. Furthermore, we propose a simple change to the update policy of Branch Target Buffer (BTB) to defend against BTB attacks. Our experiments show that our proposed schemes are both security effective and performance efficient.

Notes

If this is your thesis or dissertation, and want to learn how to access it or for more information about readership statistics, contact us at STARS@ucf.edu

Graduation Date

2010

Advisor

Zhou, Huiyang

Degree

Doctor of Philosophy (Ph.D.)

College

College of Engineering and Computer Science

Department

Electrical Engineering and Computer Science

Degree Program

Computer Science

Format

application/pdf

Identifier

CFE0003211

URL

http://purl.fcla.edu/fcla/etd/CFE0003211

Language

English

Release Date

August 2010

Length of Campus-only Access

None

Access Status

Doctoral Dissertation (Open Access)

STARS Citation

Kong, Jingfei, "Architectural Support For Improving Computer Security" (2010). Electronic Theses and Dissertations. 4294.
https://stars.library.ucf.edu/etd/4294