Paper Info
Title
Web server protection by customized instruction set encoding
Abstract
We present a novel technique to secure the execution of a processor against the execution of malicious code (trojans, viruses). The main idea is to permute parts of the opcode values so that it gets a different semantic meaning. A virus which does not know the permutation is not able to execute and will cause a failure such as segmentation violation, whereby the execution of malicious code is prevented. The permutation is realized by a lookup table. We develop several variants that require only small changes to microprocessors. We sketch how to bootstrap a system such that all intended applications (including operating system) are reversely permuted, and can execute as intended. While this will be cumbersome for typical personal computers, it will work for web servers, because the number of applications and frequency of installation is lower. Furthermore, web servers are particularly endangered: they cannot be protected as good as personal computers, because by the very nature of their duty they are more openly connected with the internet than any other computer in an organization's network.
Year
DOI
Venue
2006
10.1109/IPDPS.2006.1639665
IPDPS
Keywords
Field
DocType
novel technique,main idea,web server protection,lookup table,personal computer,typical personal computer,operating system,web server,customized instruction,intended application,different semantic meaning,malicious code,internet,application software,segmentation violation,encoding,computer viruses,microcomputers,operating systems,instruction sets,frequency
Computer science,Instruction set,Computer virus,Computer network,Application software,Distributed computing,The Internet,Opcode,Segmentation fault,Parallel computing,Permutation,Operating system,Web server
Conference
ISBN
Citations 
PageRank 
1-4244-0054-6
3
0.49
References 
Authors
7
3
Name
Order
Citations
PageRank
Bernhard Fechner17812.18
Jörg Keller230.49
Andreas Wohlfeld330.49