Security and Scalability of Remote Entrusting Protection

Desnitsky, Vasily; Kotenko, Igor

doi:10.1007/978-3-642-14706-7_23

Vasily Desnitsky¹⁸ &
Igor Kotenko¹⁸

Part of the book series: Lecture Notes in Computer Science ((LNCCN,volume 6258))

Included in the following conference series:

International Conference on Mathematical Methods, Models, and Architectures for Computer Network Security

1176 Accesses
2 Citations

Abstract

The paper outlines to the problem of correlation between security and scalability of software protection against tampering based on the remote entrusting principles. The goal of the paper is to propose a technique allowing choosing the most effective combination of different protection methods to apply. The technique is aimed at finding a trade-off between performance of the protection mechanism and its security, ensuring both a necessary security level and an appropriate scalability. The technique encompasses the evaluation of particular protection methods belonging to the whole protection mechanism and getting quantitative metrics of their performance and security level.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Atallah, M., Bryant, E., Stytz, M.: A survey of Anti-Tamper Technologies. The Journal of Defence Software Engineering (2004)
Google Scholar
Barbara, D., Goel, R., Jajodia, S.: A checksum-based corruption detection technique. Journal of Computer Security 11(3) (2003)
Google Scholar
Beshelev, S.D., Gurvich, A.G.: Mathematical-statistical methods for expert Judgments. Statistika (1980)
Google Scholar
Chappell, B.L., Marlow, D.T., Irey, P.M., O’Donoghue, K.: An Approach for Measuring IP Security Performance in a Distributed Environment. In: Rolim, J.D.P. (ed.) IPPS-WS 1999 and SPDP-WS 1999. LNCS, vol. 1586. Springer, Heidelberg (1999)
Chapter Google Scholar
Ceccato, M., Preda, M., Majumdar, A., Tonella, P.: Remote software protection by orthogonal client replacement. In: The 24th ACM Symposium on Applied Computing (2009)
Google Scholar
Ceccato, M., Preda, M., Nagra, J., Collberg, C., Tonella, P.: Barrier Slicing for Remote Software Trusting. In: The IEEE International Working Conference on Source Code Analysis and Manipulation, Paris, France (2007)
Google Scholar
Collberg, C., Thomborson, C.: Watermarking, tamper-proofing, and obfuscation tools for software protection. IEEE Transactions on Software Engineering 28 (2002)
Google Scholar
Freeman, W., Miller, E.: An Experimental Analysis of Cryptographic Overhead in Performance-Critical Systems. In: The 7th International Symposium on Modeling, Analysis and Simulation of Computer and Telecommunication Systems (1999)
Google Scholar
FP6 Project RE-TRUST, http://www.re-trust.org
Godoy, G., Tiwari, A.: Invariant Checking for Programs with Procedure Calls. In: Palsberg, J., Su, Z. (eds.) SAS 2009. LNCS, vol. 5673, pp. 326–342. Springer, Heidelberg (2009)
Google Scholar
Jain, R.: The Art of Computer Systems Performance Analysis: Techniques for Experimental Design, Measurement, Simulation, and Modeling. Wiley-Interscience, New York (1991)
MATH Google Scholar
Kennell, R., Jamieson, L.H.: Establishing the genuinity of remote computer systems. In: The 12th USENIX Security Symposium, Washington, DC, USA (2003)
Google Scholar
Menasce, D.A.: Security performance. IEEE Internet Computing 7(3) (2003)
Google Scholar
Oh, N., Shirvani, P.P., McCluskey, E.J.: Control-flow checking by software signatures. IEEE Transactions on Reliability 51 (2002)
Google Scholar
Seshadri, A., Luk, M., Shi, E., Perrig, A., Doorn, L.V., Khosla, P.: Pioneer: verifying code integrity and enforcing untampered code execution on legacy systems. In: The Twentieth ACM Symposium on Operating Systems Principles. ACM Press, New York (2005)
Google Scholar
Seshadri, A., Perrig, A., Doorn, L.V., Khosla, P.: SWATT: SoftWare-based ATTestation for Embedded Devices. The IEEE Symposium on Security and Privacy (2004)
Google Scholar

Download references

Author information

Authors and Affiliations

St. Petersburg Institute for Informatics and Automation (SPIIRAS), 39, 14 Linija, St. Petersburg, Russia
Vasily Desnitsky & Igor Kotenko

Authors

Vasily Desnitsky
View author publications
You can also search for this author in PubMed Google Scholar
Igor Kotenko
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Computer Security Research Group, St. Petersburg Institute for Informatics and Automation, 39, 14 Liniya, 199178, St.-Petersburg, Russia
Igor Kotenko
US Air Force, Binghamton University (SUNYI), 13902, Binghamton, NY, USA
Victor Skormin

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Desnitsky, V., Kotenko, I. (2010). Security and Scalability of Remote Entrusting Protection. In: Kotenko, I., Skormin, V. (eds) Computer Network Security. MMM-ACNS 2010. Lecture Notes in Computer Science, vol 6258. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-14706-7_23

Download citation

DOI: https://doi.org/10.1007/978-3-642-14706-7_23
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-14705-0
Online ISBN: 978-3-642-14706-7
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics