|
Einrichtungen >> Technische Fakultät (TF) >> Department Informatik (INF) >> Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen) >>
|
Instrumentation of a Java VM to combine Java with Control Flow Attestation
- Art der Arbeit:
- Master Thesis
- Betreuer:
- Schirrmacher, Franziska
Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen) E-Mail: franziska.schirrmacher@fau.de
Müller, Tilo Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen) E-Mail: tilo.mueller@cs.fau.de
Freiling, Felix Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen) Telefon +49 9131 85 69901, Fax +49 9131 85 69919, E-Mail: felix.freiling@fau.de
- Beschreibung der Arbeit:
- This thesis aims at combining Java code with Control Flow Attestation (CFA). With CFA the Java VM can prove to an external (authorized) party that the program is in a certain state during runtime. This allows that external party to check that the VM and the Java program has not been modified.
CFA is a concept that has been investigated in the literature at the level of hardware. This thesis aims at bridging the gap between hardware-based techniques and the runtime environment of the Java Virtual Machine. The first step is to consider the Java VM to be part of the trusted computing base and to have the Java VM send a signed message to the external party when certain states (basic blocks) in the program are reached. The external party can then check whether this state is as expected with respect to the Control Flow Graph (CFG). Both, the Control Flow Graph and the critical basic blocks are provided by a static Information Flow Control tool called JOANA and can be considered as input to the project.
This thesis consists of the following steps:
Construct an input parser to transform JOANA output to a suitable internal representation
Adapt the open source Java Virtual Machine OpenJDK such that code can be executed when certain basic blocks are entered or exited
Based on the internal representation of the CFG, instrument the Java VM to send messages to an external party when critical basic blocks are entered
Construct a remote program that acts as a receiver for attestation messages and checks them with respect to the CFG output by JOANA
- Weitere Informationen zur Arbeit:
- https://pp.ipd.kit.edu/projects/joana/
- Bearbeitungszustand:
Die Arbeit ist bereits abgeschlossen. |
|
|
|
|
UnivIS ist ein Produkt der Config eG, Buckenhof |
|
|