EmbedWatch: Fat Pointer Solution for Detecting Spatial Memory Errors in Embedded Systems

Rusconi, D.; Zoia, M.; Buccioli, L.; Pierazzi, F.; Bruschi, D.; Cavallaro, L.; Toffalini, F.; Lanzi, A.

doi:10.1145/3690134.3694815

This paper introduces EmbedWatch, an innovative crash reporting system specifically designed for embedded devices. EmbedWatch integrates fat pointer principles with remote attestation, efficiently addressing spatial memory errors across various memory segments, including stack, heap, and global variables. The system's notable feature is its vulnerability analysis capability, which precisely pinpoints the exact code segment responsible for an error, significantly enhancing error detection and resolution accuracy. We assess the effectiveness and practicality of EmbedWatch by evaluating realworld firmware and CWEs. We show that EmbedWatch accurately detects the vulnerability analysis of spatial memory errors in the analyzed firmware with a negligible overhead range (0.01% - 2.33%), geometric mean 0.228 +0.4% encryption protocol.

EmbedWatch: Fat Pointer Solution for Detecting Spatial Memory Errors in Embedded Systems / D. Rusconi, M. Zoia, L. Buccioli, F. Pierazzi, D. Bruschi, L. Cavallaro, F. Toffalini, A. Lanzi - In: CPSIoTSec'24: Proceedings / [a cura di] K. Fawaz, M. Almgren. - [s.l] : ACM, 2024. - ISBN 979-8-4007-1244-9. - pp. 55-67 (( Intervento presentato al 6. convegno CPS&IoT Security and Privacy tenutosi a Salt Lake City nel 2024 [10.1145/3690134.3694815].

EmbedWatch: Fat Pointer Solution for Detecting Spatial Memory Errors in Embedded Systems

D. Rusconi^Primo;M. Zoia^Secondo;L. Buccioli;Pierazzi, Fabio;D. Bruschi;L. Cavallaro;Toffalini, Flavio;A. Lanzi^Ultimo

2024

Abstract

This paper introduces EmbedWatch, an innovative crash reporting system specifically designed for embedded devices. EmbedWatch integrates fat pointer principles with remote attestation, efficiently addressing spatial memory errors across various memory segments, including stack, heap, and global variables. The system's notable feature is its vulnerability analysis capability, which precisely pinpoints the exact code segment responsible for an error, significantly enhancing error detection and resolution accuracy. We assess the effectiveness and practicality of EmbedWatch by evaluating realworld firmware and CWEs. We show that EmbedWatch accurately detects the vulnerability analysis of spatial memory errors in the analyzed firmware with a negligible overhead range (0.01% - 2.33%), geometric mean 0.228 +0.4% encryption protocol.

Scheda breve

Scheda completa

Scheda completa (DC)

	Parole chiave
	
				Embedded Security; Remote Attestation; Memory Safety; Program Analysis; Protection Mechanisms
			
	Settori scientifico-disciplinari del contributo (validi dal 09/05/2024)
	
				Settore INFO-01/A - Informatica
			
	Data di pubblicazione
	
				2024
			
	DOI
	
				https://dx.doi.org/10.1145/3690134.3694815
			
	Tipologia
	
				Book Part (author)
			
	Appare nelle tipologie:
	
				03 - Contributo in volume

File in questo prodotto:

File	Dimensione	Formato
3690134.3694815.pdf accesso aperto Tipologia: Publisher's version/PDF Dimensione 1.25 MB Formato Adobe PDF Visualizza/Apri	1.25 MB	Adobe PDF	Visualizza/Apri

Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/1121851

Citazioni

ND

0

ND

IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca