InfoShield: a security architecture for protecting information usage in memory

InfoShield: a security architecture for protecting information usage in memory

Cyber theft is a serious threat to Internet security. It is one of the major security concerns by both network service providers and Internet users. Though sensitive information can be encrypted when stored in non-volatile memory such as hard disks, for many e-commerce and network applications, sens...

Full description

Saved in:
Bibliographic Details
Published in:The Twelfth International Symposium on High-Performance Computer Architecture, 2006 pp. 222 - 231
Main Authors: Shi, W., Fryman, J.B., Gu, G., Lee, H.-H.S., Zhang, Y., Yang, J.
Format: Conference Proceeding
Language:English
Published: IEEE 2006
Subjects:
Buffer overflow
Computer security
Cryptography
Hard disks
Hardware
Information security
IP networks
Nonvolatile memory
Protection
Web and internet services
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Cyber theft is a serious threat to Internet security. It is one of the major security concerns by both network service providers and Internet users. Though sensitive information can be encrypted when stored in non-volatile memory such as hard disks, for many e-commerce and network applications, sensitive information is often stored as plaintext in main memory. Documented and reported exploits facilitate an adversary stealing sensitive information from an application's memory. These exploits include illegitimate memory scan, information theft oriented buffer overflow, invalid pointer manipulation, integer overflow, password stealing Trojans and so forth. Today's computing system and its hardware cannot address these exploits effectively in a coherent way. This paper presents a unified and lightweight solution, called InfoShield that can strengthen application protection against theft of sensitive information such as passwords, encryption keys, and other private data with a minimal performance impact. Unlike prior whole memory encryption and information flow based efforts, InfoShield protects the usage of information. InfoShield ensures that sensitive data are used only as defined by application semantics, preventing misuse of information. Comparing with prior art, InfoShield handles a broader range of information theft scenarios in a unified framework with less overhead. Evaluation using popular network client-server applications shows that InfoShield is sound for practical use and incurs little performance loss because InfoShield only protects absolute, critical sensitive information. Based on the profiling results, only 0.3% of memory accesses and 0.2% of executed codes are affected by InfoShield.
ISBN:9780780393684
0780393686
ISSN:1530-0897
2378-203X
DOI:10.1109/HPCA.2006.1598131