A framework for testing hardware-software security architectures

Jeffrey S. Dwoskin, Mahadevan Gomathisankaran, Yu Yuan Chen, Ruby B. Lee

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Scopus citations

Abstract

New security architectures are difficult to prototype and test at the design stage. Fine-grained monitoring of the interactions between hardware, the operating system and applications is required. We have designed and prototyped a testing framework, using virtualization, that can emulate the behavior of new hardware mechanisms in the virtual CPU and can perform a wide range of hardware and software attacks on the system under test. Our testing framework provides APIs for monitoring hardware and software events in the system under test, launching attacks, and observing their effects. We demonstrate its use by testing the security properties of the Secret Protection (SP) architecture using a suite of attacks. We show two important lessons learned from the testing of the SP architecture that affect the design and implementation of the architecture. Our framework enables extensive testing of hardware-software security architectures, in a realistic and flexible environment, with good performance provided by virtualization.

Original languageEnglish (US)
Title of host publicationProceedings - 26th Annual Computer Security Applications Conference, ACSAC 2010
Pages387-397
Number of pages11
DOIs
StatePublished - 2010
Event26th Annual Computer Security Applications Conference, ACSAC 2010 - Austin, TX, United States
Duration: Dec 6 2010Dec 10 2010

Publication series

NameProceedings - Annual Computer Security Applications Conference, ACSAC
ISSN (Print)1063-9527

Other

Other26th Annual Computer Security Applications Conference, ACSAC 2010
CountryUnited States
CityAustin, TX
Period12/6/1012/10/10

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Software
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'A framework for testing hardware-software security architectures'. Together they form a unique fingerprint.

  • Cite this

    Dwoskin, J. S., Gomathisankaran, M., Chen, Y. Y., & Lee, R. B. (2010). A framework for testing hardware-software security architectures. In Proceedings - 26th Annual Computer Security Applications Conference, ACSAC 2010 (pp. 387-397). (Proceedings - Annual Computer Security Applications Conference, ACSAC). https://doi.org/10.1145/1920261.1920318