SBAP: Software-Based Attestation for Peripherals

13 years 9 months ago

Download sparrow.ece.cmu.edu

Abstract. Recent research demonstrates that adversaries can inject malicious code into a peripheral’s ﬁrmware during a ﬁrmware update, which can result in password leakage or even compromise of the whole host operating system. Therefore, it is desirable for a host system to be able to verify the ﬁrmware integrity of attached peripherals. Several softwarebased attestation techniques on embedded devices have been proposed as potentially enabling ﬁrmware veriﬁcation. In this work, we propose a Software-Based Attestation technique for Peripherals that veriﬁes the ﬁrmware integrity of a peripheral and detects malicious changes with a high probability, even in the face of recently proposed attacks. We implement and evaluate SBAP in an Apple Aluminum Keyboard and study the extent to which our scheme enhances the security properties of peripherals.

Yanlin Li, Jonathan M. McCune, Adrian Perrig

Real-time Traffic

Attestation Technique | Security Privacy | Several Softwarebased Attestation | TRUST 2010 | ﬁrmware Integrity |

claim paper

Post Info
More Details (n/a)

Added	11 Jul 2010
Updated	11 Jul 2010
Type	Conference
Year	2010
Where	TRUST
Authors	Yanlin Li, Jonathan M. McCune, Adrian Perrig

Comments (0)

Sciweavers

SBAP: Software-Based Attestation for Peripherals

Attestation Technique | Security Privacy | Several Softwarebased Attestation | TRUST 2010 | ﬁrmware Integrity |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers