Lazart: A Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections - Université Grenoble Alpes Accéder directement au contenu
Communication Dans Un Congrès Année : 2014

Lazart: A Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections

Marie-Laure Potet
  • Fonction : Auteur correspondant
  • PersonId : 972952

Connectez-vous pour contacter l'auteur
Laurent Mounier
  • Fonction : Auteur
Maxime Puys
Louis Dureuil
  • Fonction : Auteur

Résumé

In the domain of smart cards, secured devices must be protected against high level attack potential [1]. According to norms such as the Common Criteria [2], the vulnerability analysis must cover the current state-of-the-art in term of attacks. Nowadays, a very classical type of attack is fault injection, conducted by means of laser based techniques. We propose a global approach, called Lazart, to evaluate code robustness against fault injections targeting control flow modifications. The originality of Lazart is twofolds. First, we encompass the evaluation process as a whole: starting from a fault model, we produce (or establish the absence of) attacks, taking into consideration software countermeasures. Furthermore, according to the near state-of-the-art, our methodology takes into account multiple transient fault injections and their combinatory. The proposed approach is supported by an effective tool suite based on the LLVM format [3] and the KLEE symbolic test generator [4].
Fichier principal
Vignette du fichier
ICST14.pdf (334.93 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)
Loading...

Dates et versions

hal-01229274 , version 1 (16-11-2015)

Identifiants

Citer

Marie-Laure Potet, Laurent Mounier, Maxime Puys, Louis Dureuil. Lazart: A Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections. Seventh IEEE International Conference on Software Testing, Verification and Validation, Mar 2014, Cleveland, United States. ⟨10.1109/ICST.2014.34⟩. ⟨hal-01229274⟩
617 Consultations
838 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More