ETD PDF

The Security and Performance Impact of Object File Shuffling

Citation

Buch, Jonathan Michael. (2020-05). The Security and Performance Impact of Object File Shuffling. Theses and Dissertations Collection, University of Idaho Library Digital Collections. https://www.lib.uidaho.edu/digital/etd/items/buch_idaho_0089n_11843.html

Title:
The Security and Performance Impact of Object File Shuffling
Author:
Buch, Jonathan Michael
Date:
2020-05
Keywords:
automated cybersecurity firmware
Program:
Computer Science
Subject Category:
Computer science
Abstract:

Software running on desktop computers, laptops, and servers can be updated on a regular basis, installing security and bug fixes. However, industrial control system devices and embedded devices are often deployed and then left in operation for long periods of time with no software updates. The software running in these devices is often installed as an integral part of the system, and is typically called firmware. As these devices age, many have security vulnerabilities found that are located in their firmware or related libraries and as such need to be patched to mitigate the vulnerability, or they are otherwise vulnerable to exploitation. One issue with updating this firmware is that the original image may contain an old version of a library that they rely on for their processes and haphazardly updating may break that functionality. Also, updates may cause changes in critical real-time behavior of the systems. If the firmware is not updated, attacks that exploit discovered vulnerabilities can be successful against all of the deployed devices. This research explores diversification of deployed firmware through the use of shuffling portions of the firmware's code while retaining original functionality. This thesis examines the security impact of shuffling and then reports on a set of experiments that look at performance impact of the shuffling. Results indicate that shuffling can improve security against many modern low-level attacks, and that rearranging the code can change run-time performance of the program by a couple percentage points. With increased security and little performance impact, we recommend further study into the use of shuffling as an added security mechanism.

Description:
masters, M.S., Computer Science -- University of Idaho - College of Graduate Studies, 2020-05
Major Professor:
Alves-Foss, Jim
Committee:
Song, Jia; Conte de Leon, Daniel
Defense Date:
2020-05
Identifier:
Buch_idaho_0089N_11843
Type:
Text
Format Original:
PDF
Format:
application/pdf

Contact us about this record

Rights
Rights:
In Copyright - Educational Use Permitted. For more information, please contact University of Idaho Library Special Collections and Archives Department at libspec@uidaho.edu.
Standardized Rights:
http://rightsstatements.org/vocab/InC-EDU/1.0/