Code Decoupling Execution Isolating Based on TF Card Firmware Extension

Code Decoupling Execution Isolating Based on TF Card Firmware Extension

연구 분야: Analysis

학회: 2021 IEEE Sixth International Conference on Data Science in Cyberspace (DSC)

Currently, most of the research on code protection is focused on a single execution domain. The penetration and cracking means for this single execution environment pose great challenges to the secure execution of the code. For example, fuzzy testing and symbolic execution can effectively discover code vulnerabilities. Page execution attribute protection can be bypassed using the Return-oriented programming (ROP) attack or other ways. This paper proposes an asymmetric heterogeneous execution environment based on TF card firmware extension for the secure code. By modifying the TF card firmware to decouple the security-critical code to the host CPU and a TF card controller, the critical code runs separately in two or more execution environments. It can effectively fight against the penetration for a single execution environment, enhance the anti-analysis, anti-penetration and anti-cracking abilities, and provide reliable protection for the operation of core critical devices, including servers and embedded systems.