UnivIS
Informationssystem der Friedrich-Alexander-Universität Erlangen-Nürnberg © Config eG 
FAU Logo
  Sammlung/Stundenplan    Modulbelegung Home  |  Rechtliches  |  Kontakt  |  Hilfe    
Suche:       
 Lehr-
veranstaltungen
   Personen/
Einrichtungen
   Räume   Forschungs-
bericht
   Publi-
kationen
   Internat.
Kontakte
   Examens-
arbeiten
   Telefon &
E-Mail
 
 
 Darstellung
 
Druckansicht

 
 
 Außerdem im UnivIS
 
Vorlesungs- und Modulverzeichnis nach Studiengängen

Vorlesungsverzeichnis

 
 
Veranstaltungskalender

Stellenangebote

Möbel-/Rechnerbörse

 
 
Einrichtungen >> Technische Fakultät (TF) >> Department Informatik (INF) >> Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen) >>

Instrumentation of a Java VM to combine Java with Control Flow Attestation

Art der Arbeit:
Master Thesis
Betreuer:
Schirrmacher, Franziska
Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen)
E-Mail: franziska.schirrmacher@fau.de

Müller, Tilo
Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen)
E-Mail: tilo.mueller@cs.fau.de

Freiling, Felix
Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen)
Telefon +49 9131 85 69901, Fax +49 9131 85 69919, E-Mail: felix.freiling@fau.de

Beschreibung der Arbeit:
This thesis aims at combining Java code with Control Flow Attestation (CFA). With CFA the Java VM can prove to an external (authorized) party that the program is in a certain state during runtime. This allows that external party to check that the VM and the Java program has not been modified.
CFA is a concept that has been investigated in the literature at the level of hardware. This thesis aims at bridging the gap between hardware-based techniques and the runtime environment of the Java Virtual Machine. The first step is to consider the Java VM to be part of the trusted computing base and to have the Java VM send a signed message to the external party when certain states (basic blocks) in the program are reached. The external party can then check whether this state is as expected with respect to the Control Flow Graph (CFG). Both, the Control Flow Graph and the critical basic blocks are provided by a static Information Flow Control tool called JOANA and can be considered as input to the project.
This thesis consists of the following steps:
  • Construct an input parser to transform JOANA output to a suitable internal representation

  • Adapt the open source Java Virtual Machine OpenJDK such that code can be executed when certain basic blocks are entered or exited

  • Based on the internal representation of the CFG, instrument the Java VM to send messages to an external party when critical basic blocks are entered

  • Construct a remote program that acts as a receiver for attestation messages and checks them with respect to the CFG output by JOANA

Weitere Informationen zur Arbeit:
https://pp.ipd.kit.edu/projects/joana/
Bearbeitungszustand:
Die Arbeit ist bereits abgeschlossen.

UnivIS ist ein Produkt der Config eG, Buckenhof