Abstract
Remote trusting aims at verifying the "healthy" execution of a program running on an untrusted client that communicates with a trusted server via network connection. After giving a formal definition of the remote trusting problem and a test to determine whether an attack against a given remote trusting scheme is successful or not, we propose a protection against malicious modification of the client code, based on the replication of a portion of the client on the server. To minimize the size of the code that is replicated, we propose to use barrier slicing. We show the feasibility of our approach on a case study. Our results indicate that a barrier slice is significantly smaller than the corresponding backward slice while providing the same level of protection.
| Original language | English (US) |
|---|---|
| Title of host publication | SCAM 2007 - Proceedings 7th IEEE International Working Conference on Source Code Analysis and Manipulation |
| Pages | 27-36 |
| Number of pages | 10 |
| DOIs | |
| State | Published - 2007 |
| Event | 7th IEEE International Working Conference on Source Code Analysis and Manipulation, SCAM 2007 - Paris, France Duration: Sep 30 2007 → Oct 1 2007 |
Other
| Other | 7th IEEE International Working Conference on Source Code Analysis and Manipulation, SCAM 2007 |
|---|---|
| Country | France |
| City | Paris |
| Period | 9/30/07 → 10/1/07 |
Fingerprint
ASJC Scopus subject areas
- Computer Science Applications
- Software
Cite this
Barrier slicing for remote software trusting. / Ceccato, Mariano; Preda, Mila Dalla; Nagra, Jasvir; Collberg, Christian S; Tonella, Paolo.
SCAM 2007 - Proceedings 7th IEEE International Working Conference on Source Code Analysis and Manipulation. 2007. p. 27-36 4362895.Research output: Chapter in Book/Report/Conference proceeding › Conference contribution
}
TY - GEN
T1 - Barrier slicing for remote software trusting
AU - Ceccato, Mariano
AU - Preda, Mila Dalla
AU - Nagra, Jasvir
AU - Collberg, Christian S
AU - Tonella, Paolo
PY - 2007
Y1 - 2007
N2 - Remote trusting aims at verifying the "healthy" execution of a program running on an untrusted client that communicates with a trusted server via network connection. After giving a formal definition of the remote trusting problem and a test to determine whether an attack against a given remote trusting scheme is successful or not, we propose a protection against malicious modification of the client code, based on the replication of a portion of the client on the server. To minimize the size of the code that is replicated, we propose to use barrier slicing. We show the feasibility of our approach on a case study. Our results indicate that a barrier slice is significantly smaller than the corresponding backward slice while providing the same level of protection.
AB - Remote trusting aims at verifying the "healthy" execution of a program running on an untrusted client that communicates with a trusted server via network connection. After giving a formal definition of the remote trusting problem and a test to determine whether an attack against a given remote trusting scheme is successful or not, we propose a protection against malicious modification of the client code, based on the replication of a portion of the client on the server. To minimize the size of the code that is replicated, we propose to use barrier slicing. We show the feasibility of our approach on a case study. Our results indicate that a barrier slice is significantly smaller than the corresponding backward slice while providing the same level of protection.
UR - http://www.scopus.com/inward/record.url?scp=47749090850&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=47749090850&partnerID=8YFLogxK
U2 - 10.1109/SCAM.2007.27
DO - 10.1109/SCAM.2007.27
M3 - Conference contribution
AN - SCOPUS:47749090850
SN - 0769528805
SN - 9780769528809
SP - 27
EP - 36
BT - SCAM 2007 - Proceedings 7th IEEE International Working Conference on Source Code Analysis and Manipulation
ER -