Ordered Merkle Tree - a versatile data-structure for security kernels
<p>Hidden undesired functionality is an unavoidable reality in any complex hardware or software component. Undesired functionality deliberately introduced Trojan horses or accidentally introduced bugsin any component of a system can be exploited by attackers to exert control over the system. T...
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Others |
| Language: | en |
| Published: |
MSSTATE
2013
|
| Subjects: | |
| Online Access: | http://sun.library.msstate.edu/ETD-db/theses/available/etd-06242013-124105/ |
| id |
ndltd-MSSTATE-oai-library.msstate.edu-etd-06242013-124105 |
|---|---|
| record_format |
oai_dc |
| spelling |
ndltd-MSSTATE-oai-library.msstate.edu-etd-06242013-1241052015-03-17T15:54:59Z Ordered Merkle Tree - a versatile data-structure for security kernels Mohanty, Somya Darsan Computer Science and Engineering <p>Hidden undesired functionality is an unavoidable reality in any complex hardware or software component. Undesired functionality deliberately introduced Trojan horses or accidentally introduced bugsin any component of a system can be exploited by attackers to exert control over the system. This poses a serious security risk to systemsespecially in the ever growing number of systems based on networks of computers.</p> <p>The approach adopted in this dissertation to secure systems seeks immunity from hidden functionality. Specifically, if a minimal trusted computing base (TCB) for any system can be identified, and if we can eliminate hidden functionality in the TCB, all desired assurances regarding the operation of the system can be guaranteed. More specifically, the desired assurances are guaranteed even if undesired functionality may exist in every component of the system <I>outside</I> the TCB.</p> <p>A broad goal of this dissertation is to characterize the TCB for various systems as <I>a set of functions executed by a trusted security kernel.</I> Some constraints are deliberately imposed on the security kernel functionality to reduce the risk of hidden functionality inside the security kernel.</p> <p>In the security model adopted in this dissertation, any system is seen as an interconnection of subsystems, where each subsystem is associated with a security kernel. The security kernel for a subsystem performs only the bare minimal tasks required to assure the integrity of the tasks performed by the subsystem.</p> <p>Even while the security kernel functionality may be different for each system/subsystem, it is essential to identify reusable components of the functionality that are suitable for a wide range of systems. The contribution of the research is a versatile data-structure Ordered Merkle Tree (OMT), which can act as the reusable component of various security kernels. The utility of OMT is illustrated by designing security kernels for subsystems participating in, 1) a remote file storage system, 2) a generic content distribution system, 3) generic look-up servers, 4) mobile ad-hoc networks and 5) the Internets routing infrastructure based on the border gateway protocol (BGP).</p> Dr. Yoginder S. Dandass Dr. Edward B. Allen Dr. David A. Dampier Dr. Mahalingam Ramkumar Dr. Nan Niu MSSTATE 2013-07-30 text application/pdf http://sun.library.msstate.edu/ETD-db/theses/available/etd-06242013-124105/ http://sun.library.msstate.edu/ETD-db/theses/available/etd-06242013-124105/ en restricted I hereby certify that, if appropriate, I have obtained and attached hereto a written permission statement from the owner(s) of each third party copyrighted matter to be included in my thesis, Dissertation, or project report, allowing distribution as specified below. I certify that the version I submitted is the same as that approved by my advisory committee. I hereby grant to Mississippi State University Libraries or its agents the non-exclusive license to archive and make accessible, under the conditions specified below, my thesis, Dissertation, or project report in whole or in part in all forms of media, now or hereafter known. I retain all other ownership rights to the copyright of the thesis, Dissertation or project report. I also retain the right to use in future works (such as articles or books) all or part of this thesis, Dissertation, or project report. |
| collection |
NDLTD |
| language |
en |
| format |
Others
|
| sources |
NDLTD |
| topic |
Computer Science and Engineering |
| spellingShingle |
Computer Science and Engineering Mohanty, Somya Darsan Ordered Merkle Tree - a versatile data-structure for security kernels |
| description |
<p>Hidden undesired functionality is an unavoidable reality in any complex hardware or
software component. Undesired functionality deliberately introduced Trojan horses or
accidentally introduced bugsin any component of a system can be exploited by attackers
to exert control over the system. This poses a serious security risk to systemsespecially
in the ever growing number of systems based on networks of computers.</p>
<p>The approach adopted in this dissertation to secure systems seeks immunity from hidden
functionality. Specifically, if a minimal trusted computing base (TCB) for any system
can be identified, and if we can eliminate hidden functionality in the TCB, all desired
assurances regarding the operation of the system can be guaranteed. More specifically,
the desired assurances are guaranteed even if undesired functionality may exist in every
component of the system <I>outside</I> the TCB.</p>
<p>A broad goal of this dissertation is to characterize the TCB for various systems as <I>a
set of functions executed by a trusted security kernel.</I> Some constraints are deliberately
imposed on the security kernel functionality to reduce the risk of hidden functionality
inside the security kernel.</p>
<p>In the security model adopted in this dissertation, any system is seen as an interconnection
of subsystems, where each subsystem is associated with a security kernel. The
security kernel for a subsystem performs only the bare minimal tasks required to assure
the integrity of the tasks performed by the subsystem.</p>
<p>Even while the security kernel functionality may be different for each system/subsystem,
it is essential to identify reusable components of the functionality that are suitable for a
wide range of systems. The contribution of the research is a versatile data-structure
Ordered Merkle Tree (OMT), which can act as the reusable component of various security
kernels. The utility of OMT is illustrated by designing security kernels for subsystems
participating in, 1) a remote file storage system, 2) a generic content distribution system,
3) generic look-up servers, 4) mobile ad-hoc networks and 5) the Internets routing infrastructure
based on the border gateway protocol (BGP).</p> |
| author2 |
Dr. Yoginder S. Dandass |
| author_facet |
Dr. Yoginder S. Dandass Mohanty, Somya Darsan |
| author |
Mohanty, Somya Darsan |
| author_sort |
Mohanty, Somya Darsan |
| title |
Ordered Merkle Tree - a versatile data-structure for security kernels |
| title_short |
Ordered Merkle Tree - a versatile data-structure for security kernels |
| title_full |
Ordered Merkle Tree - a versatile data-structure for security kernels |
| title_fullStr |
Ordered Merkle Tree - a versatile data-structure for security kernels |
| title_full_unstemmed |
Ordered Merkle Tree - a versatile data-structure for security kernels |
| title_sort |
ordered merkle tree - a versatile data-structure for security kernels |
| publisher |
MSSTATE |
| publishDate |
2013 |
| url |
http://sun.library.msstate.edu/ETD-db/theses/available/etd-06242013-124105/ |
| work_keys_str_mv |
AT mohantysomyadarsan orderedmerkletreeaversatiledatastructureforsecuritykernels |
| _version_ |
1716732197758566400 |