Please use this identifier to cite or link to this item: https://doi.org/10.1007/978-0-387-09428-1_19
Title: A lightweight binary authentication system for windows
Authors: Halim, F. 
Ramnath, R. 
Sufatrio, R.R. 
Wu, Y. 
Yap, R.H. 
Issue Date: 2008
Source: Halim, F.,Ramnath, R.,Sufatrio, R.R.,Wu, Y.,Yap, R.H. (2008). A lightweight binary authentication system for windows. IFIP International Federation for Information Processing 263 : 295-310. ScholarBank@NUS Repository. https://doi.org/10.1007/978-0-387-09428-1_19
Abstract: The problem of malware is greatly reduced if we can ensure that only software from trusted providers is executed. In this paper, we have built a prototype system on Windows which performs authentication of all binaries in Windows to ensure that only trusted software is executed and from the correct path. Binaries on Windows are made more complex because there are many kinds of binaries besides executables, e.g. DLLs, drivers, ActiveX controls, etc.We combine this with a simple software ID scheme for software management and vulnerability assessment which leverages on trusted infrastructure such as DNS and Certificate Authorities. Our prototype is lightweight and does not need to rely on PKI infrastructure; it does however take advantage of binaries with existing digital signatures. We provide a detailed security analysis of our authentication scheme. We demonstrate that our prototype has low overhead, around 2%, even when all binary code is authenticated. © 2008 International Federation for Information Processing.
Source Title: IFIP International Federation for Information Processing
URI: http://scholarbank.nus.edu.sg/handle/10635/43234
ISBN: 9780387094274
ISSN: 15715736
DOI: 10.1007/978-0-387-09428-1_19
Appears in Collections:Staff Publications

Show full item record
Files in This Item:
There are no files associated with this item.

SCOPUSTM   
Citations

4
checked on Jan 16, 2018

Page view(s)

46
checked on Jan 13, 2018

Google ScholarTM

Check

Altmetric


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.