A Threat Modeling Framework for Evaluating Computing Platforms Against Architectural Attacks
Seyyedeh Atefeh Musavi, Mahmoud Reza Hashemi
TL;DR
This paper introduces Lamellae, a novel threat modeling framework that assesses architectural vulnerabilities in computing platforms by integrating hardware and software views, demonstrated through a case study on x86-64 systems.
Contribution
The paper presents Lamellae, a new holistic threat modeling framework tailored for untrusted platforms, combining system architecture and security analysis.
Findings
Effective identification of attack vectors using DSM analysis.
Applicable to complex hardware-software platforms.
Validated through a real-world case study.
Abstract
software component misuse a privileged relationship with the hardware to by pass system protections, monitors, or forensic tools. These relationships are often not illegal and exist between system components by design. Hence, even a system with secure hardware and software components, can be architecturally vulnerable. Unfortunately, the existing threat modeling schemes are not applicable for modeling architectural attacks against computing platforms. This is mostly because the existing techniques rely on an abstract representation of a software (.e.g., Data Flow Diagram) as a primary requirement which is not available for a platform as a whole (considering both hardware and software elements). In this paper, we have discussed the necessity of a hardware-software architectural view to system threat modeling. Then, we have proposed Lamellae, a framework adapts threat modeling method to…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsSecurity and Verification in Computing · Information and Cyber Security · Advanced Malware Detection Techniques