A Security Study for Non-Internet Connected Managed Software

A Security Study for Non-Internet Connected Managed Software

This master thesis project aims to improve the security of managed software developed at SCANIA's research and development group NEVE. The thesis will present several security schemes that can be effective against tampering, theft, and reverse engineering of application. The schemes presented w...

Full description

Bibliographic Details
Main Author: Galassi De Orchi, Tommaso
Format: Others
Language:English
Published: KTH, Kommunikationssystem, CoS 2012
Subjects:
.Net Security
Reverse Engineering
Cryptography
C#
Information Security
zero-knowledge
Online Access:http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-99047
id ndltd-UPSALLA1-oai-DiVA.org-kth-99047
record_format oai_dc
spelling ndltd-UPSALLA1-oai-DiVA.org-kth-990472013-09-10T05:57:12ZA Security Study for Non-Internet Connected Managed SoftwareengGalassi De Orchi, TommasoKTH, Kommunikationssystem, CoS2012.Net SecurityReverse EngineeringCryptographyC#Information Securityzero-knowledgeThis master thesis project aims to improve the security of managed software developed at SCANIA's research and development group NEVE. The thesis will present several security schemes that can be effective against tampering, theft, and reverse engineering of application. The schemes presented were selected to ensure confidentiality, integrity, authenticity, and authentication of applications. NEVE’s software will be analyzed and compared against state of the art solutions. A theoretical threat analysis will be presented, corroborated by empirical reverse engineering attacks. The final part of this thesis introduces a new security scheme for C# .NET programs operating without requiring an internet connection. Denna uppsats försöker förbättra säkerheten av [managed software] utvecklad hos SCANIAS forsknings- och utvecklingsgrupp NEVE. Den visar på flera säkerhetslösningar som kan vara effektiva mot manipulation, stöld och omvänd ingenjörskonst av applikationer. De säkerhetslösningar som presenteras valdes för att säkerställa sekretess, integritet, äkthet och autentisering hos applikationer. NEVEs mjukvara kommer att analyseras och ställs mot de allra senaste lösningarna. En teoretisk hotanalys kommer att presenteras, förstärkt med attacker baserat empiriskt omvänd ingenjörskonst. Den sista delen av denna uppsats introducerar en ny säkerhetslösning. Den riktar sig mot program skrivna i C# .NET som inte kräver en uppkoppling mot internet. Student thesisinfo:eu-repo/semantics/bachelorThesistexthttp://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-99047Trita-ICT-EX ; 2012:149application/pdfinfo:eu-repo/semantics/openAccess
collection NDLTD
language English
format Others
sources NDLTD
topic .Net Security
Reverse Engineering
Cryptography
C#
Information Security
zero-knowledge
spellingShingle .Net Security
Reverse Engineering
Cryptography
C#
Information Security
zero-knowledge
Galassi De Orchi, Tommaso
A Security Study for Non-Internet Connected Managed Software
description This master thesis project aims to improve the security of managed software developed at SCANIA's research and development group NEVE. The thesis will present several security schemes that can be effective against tampering, theft, and reverse engineering of application. The schemes presented were selected to ensure confidentiality, integrity, authenticity, and authentication of applications. NEVE’s software will be analyzed and compared against state of the art solutions. A theoretical threat analysis will be presented, corroborated by empirical reverse engineering attacks. The final part of this thesis introduces a new security scheme for C# .NET programs operating without requiring an internet connection. === Denna uppsats försöker förbättra säkerheten av [managed software] utvecklad hos SCANIAS forsknings- och utvecklingsgrupp NEVE. Den visar på flera säkerhetslösningar som kan vara effektiva mot manipulation, stöld och omvänd ingenjörskonst av applikationer. De säkerhetslösningar som presenteras valdes för att säkerställa sekretess, integritet, äkthet och autentisering hos applikationer. NEVEs mjukvara kommer att analyseras och ställs mot de allra senaste lösningarna. En teoretisk hotanalys kommer att presenteras, förstärkt med attacker baserat empiriskt omvänd ingenjörskonst. Den sista delen av denna uppsats introducerar en ny säkerhetslösning. Den riktar sig mot program skrivna i C# .NET som inte kräver en uppkoppling mot internet.
author Galassi De Orchi, Tommaso
author_facet Galassi De Orchi, Tommaso
author_sort Galassi De Orchi, Tommaso
title A Security Study for Non-Internet Connected Managed Software
title_short A Security Study for Non-Internet Connected Managed Software
title_full A Security Study for Non-Internet Connected Managed Software
title_fullStr A Security Study for Non-Internet Connected Managed Software
title_full_unstemmed A Security Study for Non-Internet Connected Managed Software
title_sort security study for non-internet connected managed software
publisher KTH, Kommunikationssystem, CoS
publishDate 2012
url http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-99047
work_keys_str_mv AT galassideorchitommaso asecuritystudyfornoninternetconnectedmanagedsoftware
AT galassideorchitommaso securitystudyfornoninternetconnectedmanagedsoftware
_version_ 1716597204744929280

Similar Items