基于超级SIM卡的物联网软件完整性证明

INTEGRITY ATTESTATION OF IOT SOFTWARE BASED ON SUPER SIM CARD

  • 摘要: 针对物联网设备软件容易受到攻击和现有证明方案部署成本较大、仅能单独检测控制流劫持攻击和静态攻击的问题,研究基于超级SIM卡的物联网软件完整性证明。通过使用超级SIM卡为物联网设备提供轻量级信任根和安全加密,在BDFCFA的基础上,实现了对软件的控制流和静态二进制代码的完整性度量。分析表明,该方法的通信带宽消耗为172字节,能够抵御伪造攻击、重放攻击、中间人攻击和已知密钥攻击,并且能够同时检测控制流劫持攻击和静态攻击。

     

    Abstract: Aimed at the problems that Internet of Things (IoT) software is vulnerable to attacks, the deployment cost of existing attestation schemes is high, and only control flow hijacking attacks and static attacks can be independently detected, the integrity attestation of IoT software based on super SIM card is studied. By using the Super SIM card to provide lightweight trust root and secure encryption for Internet of Things devices, and on the basis of the BDFCFA to achieve the control flow of software and static binary code integrity measurement. The analysis shows that the communication bandwidth consumption of the proposed method is 172 bytes, which can resist forgery attacks, replay attacks, man-in-the-middle attacks and known key attacks, and can simultaneously detect control flow hijacking attacks and static attacks.

     

/

返回文章
返回