Distributed application tamper detection via continuous software updates

Christian S Collberg, Sam Martin, Jonathan Myers, Jasvir Nagra

Research output: Chapter in Book/Report/Conference proceedingConference contribution

30 Citations (Scopus)

Abstract

We present a new general technique for protecting clients in distributed systems against Remote Man-at-the-end (R-MATE) attacks. Such attacks occur in settings where an adversary has physical access to an untrusted client device and can obtain an advantage from tampering with the hardware itself or the software it contains. In our system, the trusted server overwhelms the analytical abilities of the untrusted client by continuously and automatically generating and pushing to him diverse client code variants. The diversity subsystem employs a set of primitive code transformations that provide an ever-changing attack target for the adversary, making tampering difficult without this being detected by the server.

Original languageEnglish (US)
Title of host publicationACM International Conference Proceeding Series
Pages319-328
Number of pages10
DOIs
StatePublished - 2012
Event28th Annual Computer Security Applications Conference, ACSAC 2012 - Orlando, FL, United States
Duration: Dec 3 2012Dec 7 2012

Other

Other28th Annual Computer Security Applications Conference, ACSAC 2012
CountryUnited States
CityOrlando, FL
Period12/3/1212/7/12

Fingerprint

Servers
Hardware

Keywords

  • Distributed systems
  • Security
  • Software protection

ASJC Scopus subject areas

  • Human-Computer Interaction
  • Computer Networks and Communications
  • Computer Vision and Pattern Recognition
  • Software

Cite this

Collberg, C. S., Martin, S., Myers, J., & Nagra, J. (2012). Distributed application tamper detection via continuous software updates. In ACM International Conference Proceeding Series (pp. 319-328) https://doi.org/10.1145/2420950.2420997

Distributed application tamper detection via continuous software updates. / Collberg, Christian S; Martin, Sam; Myers, Jonathan; Nagra, Jasvir.

ACM International Conference Proceeding Series. 2012. p. 319-328.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Collberg, CS, Martin, S, Myers, J & Nagra, J 2012, Distributed application tamper detection via continuous software updates. in ACM International Conference Proceeding Series. pp. 319-328, 28th Annual Computer Security Applications Conference, ACSAC 2012, Orlando, FL, United States, 12/3/12. https://doi.org/10.1145/2420950.2420997
Collberg CS, Martin S, Myers J, Nagra J. Distributed application tamper detection via continuous software updates. In ACM International Conference Proceeding Series. 2012. p. 319-328 https://doi.org/10.1145/2420950.2420997
Collberg, Christian S ; Martin, Sam ; Myers, Jonathan ; Nagra, Jasvir. / Distributed application tamper detection via continuous software updates. ACM International Conference Proceeding Series. 2012. pp. 319-328
@inproceedings{1ed5a26e1f8949fbb39901378382a0f5,
title = "Distributed application tamper detection via continuous software updates",
abstract = "We present a new general technique for protecting clients in distributed systems against Remote Man-at-the-end (R-MATE) attacks. Such attacks occur in settings where an adversary has physical access to an untrusted client device and can obtain an advantage from tampering with the hardware itself or the software it contains. In our system, the trusted server overwhelms the analytical abilities of the untrusted client by continuously and automatically generating and pushing to him diverse client code variants. The diversity subsystem employs a set of primitive code transformations that provide an ever-changing attack target for the adversary, making tampering difficult without this being detected by the server.",
keywords = "Distributed systems, Security, Software protection",
author = "Collberg, {Christian S} and Sam Martin and Jonathan Myers and Jasvir Nagra",
year = "2012",
doi = "10.1145/2420950.2420997",
language = "English (US)",
isbn = "9781450313124",
pages = "319--328",
booktitle = "ACM International Conference Proceeding Series",

}

TY - GEN

T1 - Distributed application tamper detection via continuous software updates

AU - Collberg, Christian S

AU - Martin, Sam

AU - Myers, Jonathan

AU - Nagra, Jasvir

PY - 2012

Y1 - 2012

N2 - We present a new general technique for protecting clients in distributed systems against Remote Man-at-the-end (R-MATE) attacks. Such attacks occur in settings where an adversary has physical access to an untrusted client device and can obtain an advantage from tampering with the hardware itself or the software it contains. In our system, the trusted server overwhelms the analytical abilities of the untrusted client by continuously and automatically generating and pushing to him diverse client code variants. The diversity subsystem employs a set of primitive code transformations that provide an ever-changing attack target for the adversary, making tampering difficult without this being detected by the server.

AB - We present a new general technique for protecting clients in distributed systems against Remote Man-at-the-end (R-MATE) attacks. Such attacks occur in settings where an adversary has physical access to an untrusted client device and can obtain an advantage from tampering with the hardware itself or the software it contains. In our system, the trusted server overwhelms the analytical abilities of the untrusted client by continuously and automatically generating and pushing to him diverse client code variants. The diversity subsystem employs a set of primitive code transformations that provide an ever-changing attack target for the adversary, making tampering difficult without this being detected by the server.

KW - Distributed systems

KW - Security

KW - Software protection

UR - http://www.scopus.com/inward/record.url?scp=84872108915&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84872108915&partnerID=8YFLogxK

U2 - 10.1145/2420950.2420997

DO - 10.1145/2420950.2420997

M3 - Conference contribution

AN - SCOPUS:84872108915

SN - 9781450313124

SP - 319

EP - 328

BT - ACM International Conference Proceeding Series

ER -