WO2003102769A3 - System, method and computer program product for leakage-proof program partitioning - Google Patents

System, method and computer program product for leakage-proof program partitioning Download PDF

Info

Publication number
WO2003102769A3
WO2003102769A3 PCT/US2003/017578 US0317578W WO03102769A3 WO 2003102769 A3 WO2003102769 A3 WO 2003102769A3 US 0317578 W US0317578 W US 0317578W WO 03102769 A3 WO03102769 A3 WO 03102769A3
Authority
WO
WIPO (PCT)
Prior art keywords
program
computer program
leakage
downloaded
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/US2003/017578
Other languages
French (fr)
Other versions
WO2003102769A2 (en
Inventor
Santosh Pande
Tao Zhang
Santos Andre Dos
Franz Josef Bruecklmayr
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Georgia Tech Research Institute
Georgia Tech Research Corp
Original Assignee
Georgia Tech Research Institute
Georgia Tech Research Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Georgia Tech Research Institute, Georgia Tech Research Corp filed Critical Georgia Tech Research Institute
Priority to EP03734391A priority Critical patent/EP1516249B1/en
Priority to AU2003238876A priority patent/AU2003238876A1/en
Priority to JP2004509787A priority patent/JP4727984B2/en
Publication of WO2003102769A2 publication Critical patent/WO2003102769A2/en
Anticipated expiration legal-status Critical
Publication of WO2003102769A3 publication Critical patent/WO2003102769A3/en
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/445Program loading or initiating
    • G06F9/44521Dynamic linking or loading; Link editing at or after load time, e.g. Java class loading
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/12Protecting executable software
    • G06F21/14Protecting executable software against software analysis or reverse engineering, e.g. by obfuscation
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/556Detecting local intrusion or implementing counter-measures involving covert channels, i.e. data leakage between processes
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/40Transformation of program code
    • G06F8/41Compilation
    • G06F8/44Encoding

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • Storage Device Security (AREA)

Abstract

Systems, methods and computer program products partition a whole program when it does not fit in a device's memory. Minimal, safe program partitions are downloaded from the server on demand into the embedded device just before their execution. Code and data of the program are partitioned such that no information regarding the control flow behavior of the program is leaked out. Thus, by observing the program partitions that are downloaded from the server to the device, an attacker is unable to guess which branches are taken in the program and what is the control flow of the program. This property of tamper resistance is valuable for secure embedded devices, such as smart cards, which could hold sensitive information and/or carry out critical computation such as financial transactions.
PCT/US2003/017578 2002-06-04 2003-06-04 System, method and computer program product for leakage-proof program partitioning Ceased WO2003102769A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
EP03734391A EP1516249B1 (en) 2002-06-04 2003-06-04 System, method and computer program product for leakage-proof program partitioning
AU2003238876A AU2003238876A1 (en) 2002-06-04 2003-06-04 System, method and computer program product for leakage-proof program partitioning
JP2004509787A JP4727984B2 (en) 2002-06-04 2003-06-04 Program division system, program division method, and program division computer program product having leakage prevention

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US38571302P 2002-06-04 2002-06-04
US60/385,713 2002-06-04

Publications (2)

Publication Number Publication Date
WO2003102769A2 WO2003102769A2 (en) 2003-12-11
WO2003102769A3 true WO2003102769A3 (en) 2005-01-20

Family

ID=29712204

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2003/017578 Ceased WO2003102769A2 (en) 2002-06-04 2003-06-04 System, method and computer program product for leakage-proof program partitioning

Country Status (6)

Country Link
US (1) US7269671B2 (en)
EP (1) EP1516249B1 (en)
JP (1) JP4727984B2 (en)
CN (1) CN100378666C (en)
AU (1) AU2003238876A1 (en)
WO (1) WO2003102769A2 (en)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4727984B2 (en) * 2002-06-04 2011-07-20 インフィニオン テクノロジーズ アーゲー Program division system, program division method, and program division computer program product having leakage prevention
EP1613111A3 (en) * 2004-07-02 2007-12-26 Groundhog Technologies Inc. Partitioning method for mobile communication network
US20080021973A1 (en) * 2006-06-02 2008-01-24 Topia Technology Communications network architecture
US8321666B2 (en) * 2006-08-15 2012-11-27 Sap Ag Implementations of secure computation protocols
US20090075698A1 (en) * 2007-09-14 2009-03-19 Zhimin Ding Removable Card And A Mobile Wireless Communication Device
US8805949B2 (en) 2008-01-16 2014-08-12 Netapp, Inc. System and method for populating a cache using behavioral adaptive policies
US8572674B2 (en) * 2008-08-13 2013-10-29 International Business Machines Corporation System, method, and apparatus for modular, string-sensitive, access rights analysis with demand-driven precision
US9117094B2 (en) 2008-10-29 2015-08-25 Microsoft Technology Licensing, Llc Data location obfuscation
CN102143158B (en) * 2011-01-13 2013-10-09 北京邮电大学 TPM-based Data Leakage Prevention Method
EP2812832B1 (en) * 2012-02-10 2019-12-18 Irdeto B.V. Method and apparatus for program flow in software operation
CN105468543B (en) * 2014-09-11 2020-06-16 中兴通讯股份有限公司 Method and device for protecting sensitive information
KR102392642B1 (en) * 2017-11-08 2022-04-29 한국전력공사 Apparatus and method for detecting software procedure change operation based on pattern using control flow graph

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0811911A2 (en) * 1996-06-05 1997-12-10 Sun Microsystems, Inc. Computer system and method for executing network mobile code with reduced run-time memory space requirements
WO2002003022A1 (en) * 2000-07-03 2002-01-10 Samuelson Neville Anthony Wyli A means for applying images to other images
WO2002042912A1 (en) * 2000-11-22 2002-05-30 Gemplus Executing an application in a portable electronic object with low storage capacity

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5428793A (en) * 1989-11-13 1995-06-27 Hewlett-Packard Company Method and apparatus for compiling computer programs with interproceduural register allocation
JPH04337843A (en) * 1991-05-15 1992-11-25 Hitachi Ltd Program operation display method
US5696971A (en) * 1994-12-23 1997-12-09 Recursive Technologies Associates Recursive functions optimizier (RFO) for compliers of high-level programming languages
JPH08234975A (en) * 1995-02-28 1996-09-13 Fujitsu Ltd Program generation apparatus and method
JP3813769B2 (en) * 1998-08-03 2006-08-23 松下電器産業株式会社 Control program transmission method and control program download method
US7143212B1 (en) * 1998-10-26 2006-11-28 Stmicroelectronics Asia Pacific (Pte) Ltd. Modem data transfer function wherein code is downloaded during inactivity intervals wherein data transfer function is suspended
JP3570308B2 (en) * 1999-09-10 2004-09-29 日本電気株式会社 Communications system
JP2001333461A (en) * 2000-05-23 2001-11-30 Hitachi Building Systems Co Ltd Remote rewriting method of terminal program
JP2001350684A (en) * 2000-06-05 2001-12-21 Nec Gumma Ltd Software providing system and software providing device
JP4727984B2 (en) * 2002-06-04 2011-07-20 インフィニオン テクノロジーズ アーゲー Program division system, program division method, and program division computer program product having leakage prevention

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0811911A2 (en) * 1996-06-05 1997-12-10 Sun Microsystems, Inc. Computer system and method for executing network mobile code with reduced run-time memory space requirements
WO2002003022A1 (en) * 2000-07-03 2002-01-10 Samuelson Neville Anthony Wyli A means for applying images to other images
WO2002042912A1 (en) * 2000-11-22 2002-05-30 Gemplus Executing an application in a portable electronic object with low storage capacity

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
EMIN GUN SIRER ET AL: "A PRACTICAL APPROACH FOR IMPROVING STARTUP LATENCY IN JAVA APPLICATIONS", WORKSHOP ON COMPILER SUPPORT FOR SYSTEM SOFTWARE AND ACM SIGPLAN, XX, XX, 1 May 1999 (1999-05-01), pages 47 - 55, XP001188167 *
TAO ZHANG, SANTOSH PANDE, ANDRE DOS SANTOS, FRANZ JOSEF BRUECKLMAYR: "Leakage-proof program partitioning", PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON COMPILERS, ARCHITECTURE, AND SYNTHESIS FOR EMBEDDED SYSTEMS, 8 September 2002 (2002-09-08), GRENOBLE, FRANCE, pages 136 - 145, XP002297516, ISBN: 1-58113-575-0 *
ZDANCEWIC S ET AL: "Untrusted hosts and confidentiality: secure program partitioning", PROCEEDINGS OF THE EIGHTEENTH ACM SYMPOSIUM ON OPERATING SYSTEMS PRINCIPLES, 2001, pages 1 - 14, XP010681819 *

Also Published As

Publication number Publication date
CN100378666C (en) 2008-04-02
JP2005528689A (en) 2005-09-22
AU2003238876A1 (en) 2003-12-19
AU2003238876A8 (en) 2003-12-19
CN1708750A (en) 2005-12-14
US20040073898A1 (en) 2004-04-15
EP1516249A2 (en) 2005-03-23
EP1516249B1 (en) 2012-08-08
WO2003102769A2 (en) 2003-12-11
JP4727984B2 (en) 2011-07-20
US7269671B2 (en) 2007-09-11

Similar Documents

Publication Publication Date Title
WO2003102769A3 (en) System, method and computer program product for leakage-proof program partitioning
AU2931795A (en) Access control system for restricting access to authorised hours and renewing it using a portable storage medium
WO2005074433A3 (en) Computer system capable of supporting a plurality of independent computing environments
WO2005029249A8 (en) Secure network system and associated method of use
WO2003065299A3 (en) Card personalization system and method
US9760818B2 (en) Machine-readable watermarks and barcodes in images
WO2008073572A3 (en) Batch settlement transactions system and method
WO2004053654A3 (en) Method of and system for controlling access to personal information records
WO2004034238A3 (en) Encapsulation of a tcpa trusted platform module functionality within a server management coprocessor subsystem
WO2011037797A8 (en) Portable computing device and method for asset management in a logistics system
WO2004114056A3 (en) System and method for monitoring and diagnosis of point of sale devices having intelligent hardware
WO2004055634A3 (en) Systems and methods for detecting a security breach in a computer system
FI20045376A7 (en) Loyalty card and related devices
ATE548819T1 (en) SYMMETRIC CRYPTOGRAPHIC COMPUTING METHOD AND DEVICE FOR MINIMIZING LOSS IN CHIP CARDS AND OTHER ENCRYPTION SYSTEMS
WO2006092383A3 (en) Secure cell phone for atm transactions
MY139166A (en) Secure electronic delivery seal for information handling system
EP2026213A2 (en) Installation-free chipcard reader for secure online banking
RU2007111843A (en) A RANDOM PASSWORD AUTOMATICALLY FORMED BY A BASIC I / O SYSTEM (BIOS) TO PROTECT A DATA STORAGE DEVICE
WO2001053908A3 (en) Method and systems for identifying the existence of one or more unknown programs in a system
CN103886245A (en) Methods and systems for bypassing authenticity checks for secure control modules
EP3035228B1 (en) Code integrity protection by computing target addresses from checksums
DE602006020118D1 (en) Memory control method and system for backup and / or recovery execution
US20030101351A1 (en) Blocking of the operation of an integrated circuit
JP2005528689A5 (en)
El Farissi et al. Neural network vs. Bayesian network to detect Java card mutants

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NI NO NZ OM PH PL PT RO RU SC SD SE SG SK SL TJ TM TN TR TT TZ UA UG UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
WWE Wipo information: entry into national phase

Ref document number: 2004509787

Country of ref document: JP

WWE Wipo information: entry into national phase

Ref document number: 2003734391

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 20038167239

Country of ref document: CN

WWP Wipo information: published in national office

Ref document number: 2003734391

Country of ref document: EP