Name
Abstract | ||
|---|---|---|
As technology evolves, digital systems are becoming more vulnerable to hardware faults, while also increasing in complexity. Analyzing the security of a program hence requires powerful techniques such as static code analysis. The methods developed so far usually apply these techniques with a specific software fault model. Yet, the effects a fault can have on a program are very diverse, and are not entirely captured by typical software fault models. In this paper, we present a method to instrument a code with complex fault models, and we use it with a tool based on abstract interpretation to verify that some security properties hold whatever the user inputs. The tool allowed us to find vulnerabilities (validated with RTL simulation) that would be hard to find with other tools. Finally, we discuss the benefits and drawbacks of the method. |
Year | DOI | Venue |
|---|---|---|
2019 | 10.1109/FDTC.2019.00013 | 2019 Workshop on Fault Diagnosis and Tolerance in Cryptography (FDTC) |
Keywords | Field | DocType |
Hardware Fault Injection,Abstract Interpretation,Frama-C | Software fault,Static program analysis,Software engineering,Abstract interpretation,Computer science,Software security assurance,Real-time computing,Security properties,Code (cryptography) | Conference |
ISBN | Citations | PageRank |
978-1-7281-3823-7 | 0 | 0.34 |
References | Authors | |
5 | 4 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Johan Laurent | 1 | 0 | 0.34 |
| Christophe Deleuze | 2 | 0 | 0.68 |
| Vincent Beroulle | 3 | 86 | 21.86 |
| Florian Pebay-Peyroula | 4 | 3 | 2.15 |