Protecting Encryption Keys in Mobile Systems Against Memory Errors

Zhao, Jianing and Kemper, Peter (2016) Protecting Encryption Keys in Mobile Systems Against Memory Errors. EAI Endorsed Transactions on Security and Safety, 3 (10). e4. ISSN 2032-9393

[thumbnail of eai.14-12-2015.2262698.pdf]
Available under License Creative Commons Attribution No Derivatives.

Download (259kB) | Preview


Beyond its use to encrypt data, an encryption key can be used as a mean to control access to data on a mobile de-vice by leveraging a cloud service. This implies that a key is present in a mobile device only when it is on demand and authorized by the cloud, the key is evicted when it is not in use. CleanOS is an example system that is based on this concept. For security reasons, keys are stored only in DRAM memory during execution, which makes them susceptible to memory errors. In this paper, we identify scenarios where a memory error that damages a key can escalate to an unrecoverable data loss in a mobile system.

Item Type: Article
Uncontrolled Keywords: mobile systems, encryption, fault injection, simulation, memory errors, software reliability
Subjects: H Social Sciences > H Social Sciences (General)
Q Science > QA Mathematics > QA75 Electronic computers. Computer science
QA75 Electronic computers. Computer science
Depositing User: EAI Editor IV
Date Deposited: 26 Mar 2021 13:52
Last Modified: 26 Mar 2021 13:52

Actions (login required)

View Item
View Item