Book of Abstracts

Page 95

Book of Abstracts e-Asia Conference 2009

Securing Multiple Platforms for Safeguarding Personal, Enterprise and Cloud-based Information Navin Govind1 and Bhaktha Ram Keshavachar2 Antargata Pvt. Ltd., Bangalore, India; email: 1navin@antargata.com and 2bhaktha@antargata.com

Secure software code execution and secure data storage on computer systems is a known problem for which various solutions have been proposed. The prevalent solutions are either hardware based which are secure but expensive with complex deployment models or software based that is less secure and vulnerable to malicious attacks. A novel method* using secure code execution techniques to achieve superior system level security on general purpose computer systems is presented in this paper. Micro-architecture features on x86 and ARM CPU bases devices when used judiciously can be used to hide code execution and data. In addition to hiding the bytes, the technique is also resistant DPA (power analysis attacks) and cold-boot attacks. Further, to avoid class break scenarios a new algorithm is generated each instance the device user downloads data or conducts a transaction. The algorithm is based on a “Multi-Factor� process that combines device, user ID, passwords in conjunction with biometric information, browser digital certificates etc., and giving rise for the first time a true MFS (multi-factor security) system. The proposed MFS solution has been implemented on Windows, Linux, Mac OS’s and Citrix hypervisor for the above mentioned CPU architectures. An implementation of the proposed system is seamlessly transparent to the legitimate user, non-intrusive and at the same time presenting an insurmountable barrier to malicious attacks. A detailed presentation of the proposed solution, system design, threat prevention and performance are discussed. Future work involving porting the implemented solution to new architectures and efforts in generating a class of reconfigurable algorithms which are robust to cryptanalysis are outlined. * - US patents have been applied

95

Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.