Protecting Encryption Keys in Mobile Systems Against Memory Errors

Zhao, Jianing and Kemper, Peter (2016) Protecting Encryption Keys in Mobile Systems Against Memory Errors. EAI Endorsed Transactions on Security and Safety, 3 (10). e4. ISSN 2032-9393

[img]
Preview
Text
eai.14-12-2015.2262698.pdf
Available under License Creative Commons Attribution No Derivatives.

Download (259kB) | Preview

Abstract

Beyond its use to encrypt data, an encryption key can be used as a mean to control access to data on a mobile de-vice by leveraging a cloud service. This implies that a key is present in a mobile device only when it is on demand and authorized by the cloud, the key is evicted when it is not in use. CleanOS is an example system that is based on this concept. For security reasons, keys are stored only in DRAM memory during execution, which makes them susceptible to memory errors. In this paper, we identify scenarios where a memory error that damages a key can escalate to an unrecoverable data loss in a mobile system.

Item Type: Article
Uncontrolled Keywords: mobile systems, encryption, fault injection, simulation, memory errors, software reliability
Subjects: H Social Sciences > H Social Sciences (General)
Q Science > QA Mathematics > QA75 Electronic computers. Computer science
QA75 Electronic computers. Computer science
Depositing User: EAI Editor IV
Date Deposited: 26 Mar 2021 13:52
Last Modified: 26 Mar 2021 13:52
URI: https://eprints.eudl.eu/id/eprint/2064

Actions (login required)

View Item View Item