Publication
Dynamic Information Flow Tracking for Embedded Binaries using SystemC-based Virtual Prototypes
Pascal Pieper; Vladimir Herdt; Daniel Große; Rolf Drechsler
In: 57th Design Automation Conference. Design Automation Conference (DAC-2020), July 19-23, San Francisco, USA, 2020.
Abstract
Avoiding security vulnerabilities is very important forembedded systems.Dynamic Information Flow Tracking(DIFT)is a powerful technique to analyze SW with respect to securitypolicies in order to protect the system against a broad range ofsecurity related exploits. However, existing DIFT approaches eitherdo not exist forVirtual Prototypes(VPs) or fail to model complexhardware/software interactions.In this paper, we present a novel approach that enables earlyand accurate DIFT of binaries targeting embedded systems withcustom peripherals. Leveraging the SystemC framework, our DIFTengine tracks accurate data flow information alongside the programexecution to detect violations of security policies at run-time. Wedemonstrate the effectiveness and applicability of our approach byextensive experiments.