Software-based gate-level information flow security for IoT systems

Hari Cherupalli, Henry Duwe, Weidong Ye, Rakesh Kumar, John M Sartori

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Scopus citations

Abstract

The growing movement to connect literally everything to the internet (internet of things or IoT) through ultra-low-power embedded microprocessors poses a critical challenge for information security. Gate-level tracking of information flows has been proposed to guarantee information flow security in computer systems. However, such solutions rely on non-commodity, secure-by-design processors. In this work, we observe that the need for secure-by-design processors arises because previous works on gate-level information flow tracking assume no knowledge of the application running in a system. Since IoT systems typically run a single application over and over for the lifetime of the system, we see a unique opportunity to provide application-specific gate-level information flow security for IoT systems. We develop a gate-level symbolic analysis framework that uses knowledge of the application running in a system to efficiently identify all possible information flow security vulnerabilities for the system. We leverage this information to provide security guarantees on commodity processors. We also show that security vulnerabilities identified by our analysis framework can be eliminated through software modifications at 15% energy overhead, on average, obviating the need for secure-by-design hardware. Our framework also allows us to identify and eliminate only the vulnerabilities that an application is prone to, reducing the cost of information flow security by 3.3× compared to a software-based approach that assumes no application knowledge.

Original languageEnglish (US)
Title of host publicationMICRO 2017 - 50th Annual IEEE/ACM International Symposium on Microarchitecture Proceedings
PublisherIEEE Computer Society
Pages328-340
Number of pages13
ISBN (Electronic)9781450349529
DOIs
StatePublished - Oct 14 2017
Event50th Annual IEEE/ACM International Symposium on Microarchitecture, MICRO 2017 - Cambridge, United States
Duration: Oct 14 2017Oct 18 2017

Publication series

NameProceedings of the Annual International Symposium on Microarchitecture, MICRO
VolumePart F131207
ISSN (Print)1072-4451

Other

Other50th Annual IEEE/ACM International Symposium on Microarchitecture, MICRO 2017
CountryUnited States
CityCambridge
Period10/14/1710/18/17

    Fingerprint

Keywords

  • Hardwaresoftware co-analysis
  • Information flow
  • Internet of Things
  • Security
  • Ultra-low-power processors

Cite this

Cherupalli, H., Duwe, H., Ye, W., Kumar, R., & Sartori, J. M. (2017). Software-based gate-level information flow security for IoT systems. In MICRO 2017 - 50th Annual IEEE/ACM International Symposium on Microarchitecture Proceedings (pp. 328-340). (Proceedings of the Annual International Symposium on Microarchitecture, MICRO; Vol. Part F131207). IEEE Computer Society. https://doi.org/10.1145/3123939.3123955