Archivio Istituzionale della RicercaInvariants monitoring is a software attestation technique that aims at proving the integrity of a running application by checking likely invariants, which are predicates built on variables’ values. Being very promising in literature, we developed a software protection that remotely checks invariants. However, we faced a series of issues and limitations. This paper, after presenting an extensive background on invariants and their use, reports, analyses, and categorizes the identified limitations. Our work suggests that, even if it is still promising, further studies are needed to decree if invariants monitoring could be practically used as a remote protection of software applications.
Remotely assessing integrity of software applications by monitoring invariants: Present limitations and future directions / Viticchié, Alessio; Basile, Cataldo; Lioy, Antonio. - STAMPA. - (2017), pp. 66-82. (Intervento presentato al convegno CRiSIS-2017: 12th Int. Conf. on Risks and Security of Internet and Systems tenutosi a Dinard (France) nel September 19-21, 2017) [10.1007/978-3-319-76687-4_5].
Remotely assessing integrity of software applications by monitoring invariants: Present limitations and future directions
Viticchié, Alessio;Basile, Cataldo;Lioy, Antonio
2017
Abstract
Invariants monitoring is a software attestation technique that aims at proving the integrity of a running application by checking likely invariants, which are predicates built on variables’ values. Being very promising in literature, we developed a software protection that remotely checks invariants. However, we faced a series of issues and limitations. This paper, after presenting an extensive background on invariants and their use, reports, analyses, and categorizes the identified limitations. Our work suggests that, even if it is still promising, further studies are needed to decree if invariants monitoring could be practically used as a remote protection of software applications.
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/2706033
Attenzione
Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo