sok introspections on trust and the semantic gap
play

SoK:%Introspections%on%Trust%and% the%Semantic%Gap - PowerPoint PPT Presentation

Dec 26, 2023 •757 likes •1.1k views

SoK:%Introspections%on%Trust%and% the%Semantic%Gap Presented(by(Zhenyu Ning 1 Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 2 Contents

  1. SoK:%Introspections%on%Trust%and% the%Semantic%Gap Presented(by(Zhenyu Ning 1

  2. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 2

  3. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 3

  4. VMI • Virtual Machine Introspection • Memory,(disk,(network(traffic • Smaller(TCB(and(less(CVEs • A monitor tracks(the(behavior(of(guest(OS. • Hypervisor,(sibling(VM,(guest(OS,(hardware 4

  5. Semantic Gap • The(gap(between(highQlevel(expressions(and(hardwareQlevel( abstractions. 5

  6. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 6

  7. Bridging%the%gap • Learning(and(reconstruction • Code(implanting • Process(Outgrafting 7

  8. Learning%and%reconstruction • Learning(phase • Generate(data(structure(signature • Search(phase • Identify(the(instance(of(data(structure(in(memory 8

  9. Hand=craft%data%structure%signature • Based(on(expert(knowledge(of(the(internal(workings(of(an(OS. • Example:(find(“init_task”,(then(go(through(the(linked(list. • Disadvantage:(Inflexible 9

  10. Source%code%analysis • Based(on(analysis(of(source(code. • Leverage(static(analysis(to(generate(a(graph(of(kernel(data( structures. • Challenge:(Invalid(pointer,(object(pools. 10

  11. Dynamic%learning • Based(on(dynamic(analysis(of(an(OS(instance. • Training(on(a(trusted(OS(instance(by(manipulate(a(data( structure(of(interest. • Robust(signature. 11

  12. Search%phase • Linearly)Scanning • Access(more(memory • Immune(to(broken(pointers • Pointer)traversing) • Traverse(less(total(memory • Suffer(from(cyclic(and(invalid(pointers • Large)overhead)leads)to)low)frequency. 12

  13. Code%implanting • Implanting(the(monitor(code(into(guest(OS. • Implant(process • Implant(function • Challenge:(Integrity(of(implanted(code(and(guest(kernel. 13

  14. Process outgrafting • Monitor(a(untrusted(VM(from(another(sibling trusted(VM. • The(trusted(VM(has(some(visibility(into(the(kernel(memory(of( untrusted(VM. • Using(existing(code(and(readQonly(heap 14

  15. Kernel%executable%integrity • W(XOR(X(mechanism Control(Flow(Integrity(CFI) • Whitelist • Protect(object(hooks 15

  16. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 16

  17. Prevention%&%detection • Detection • Identify(violation(of(security(policy • Issue:(recovery • Prevention • Detection(and(interposition • Issue:(performance(overhead 17

  18. Asynchronous%&%synchronous • Synchronous • Prevention(system,(high(overhead • Asynchronous • Introspect(into(a(snapshot(of(memory • TradeQoffs(across(performance(&(risk • Assumption: Knowing(all(hook(location,(object(slab 18

  19. Snapshotting%&%Snooping • Snapshotting • Use(PCI(device(to(take(RAM(snapshots • Together(with(value(of(CPU(register( • SMMQbased(solution • Suffer(from(DOS(attack 19

  20. Snapshotting%&%Snooping • Snooping • Lightweight(hardware • Monitor(writes(to(sensitive(code(region(and(detect(updates(to( memory(from(malicious(device(or(driver(by(DMA • Use(snapshotting(device(to(check(data(structure(invariants(or(code( integrity • Do(not(use(commodity(hardware(and(only(focused(on(detection 20

  21. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 21

  22. KOH • Kernel(Object(Hooking(KOH) • Modify(function(pointers(in(kernel(text(or(data(section • Example:(override(readdir() • Text(section(hook( • W(XOR(X(mechanism • Data(section(hook • Move(hooks(or(whitelist • Assumption:(benign(kernel,(ability(of(administrator 22

  23. DKOM • Dynamic(Kernel(Object(Manipulation(DKOM) • Modify(kernel(heap • Example:(remove(process(from(double(linked(list • Detect(data(structure(invariant(violation(asynchronously • Assumption • Have(found(all(securityQrelevant(data(structures • These(structures(all(have(invariants • Detector(will(win(the(race 23

  24. DKSM • Direct(Kernel(Structure(Manipulation(DKSM) • Change(interpretation(of(data(structure • Different(interpretation(between(training(and(classification • Precluded(by(a(generous(threat(model 24

  25. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 25

  26. Semantic%gap • Weak)semantic)gap • An(solved(engineering(challenge • Assume(guest(OS(is(benign(during(training(and(won’t(have(different( behavior(under(monitoring • Strong)semantic)gap • An(open(security(problem • Do(not(make(any(assumption(about(the(guest(OS 26

  27. Semantic%gap • Paraverification • Light(modification(to(guest(OS • guest(OS(provide(evidence(of(its(action(is(correct • Hardware(support( • HardwareQassisted(memory(isolation,(like(SGX • Reconstruction(from(untrusted(sources • Incrementally(training • Inconsistency(detection 27

  28. Contents 1.(Background 2.(Bridge(semantic(gap 3.(Design(choices 4.(Attacks(and(defense 5.(Bridge(semantic(gap,(again 6.(Future(work(&(Conclusion 28

  29. Future%work • Scalability • Overhead(not(acceptable(in(multiQVM(system • Balance(of(overhead(and(risk • Privacy • evaluate(risks(of(new(side(channels 29

  30. Conclusion • Researches(should(be(refocused(on(removing(the( assumptions(of(a(guest(OS(to(reduce(the(TCB • Future(solutions(should(pay(more(attention(to( scalability(and(privacy(concerns 30

  31. Reference • Jain(B,(Baig M(B,(Zhang(D,(et(al.(Sok:(Introspections(on(trust(and(the( semantic(gap[C]//Security(and(Privacy((SP),(2014(IEEE(Symposium(on.( IEEE,(2014:(605Q620. 31

  32. Thank(you! 32

Recommend

Rule-Based Trust Assessment on the Semantic Web Ian Jacobi 1 , Lalana Kagal 1 , Ankesh Khandelwal

Rule-Based Trust Assessment on the Semantic Web Ian Jacobi 1 , Lalana Kagal 1 , Ankesh Khandelwal

General model AIR overview Trust on and by rules Related work, summary and future work Rule-Based Trust Assessment on the Semantic Web Ian Jacobi 1 , Lalana Kagal 1 , Ankesh Khandelwal 2 Decentralized Information Group 1 Massachussets

457 views • 33 slides
Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web companies starting & growing Siderean, SandPiper, SiberLogic, Ontology Works, Intellidimension, Intellisophic, TopQuadrant, Data Grid, Mondeca,

481 views • 23 slides
Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital

Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital

Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital Signature Data Logic Data Self- semantics + reasoning Ontology vocabulary descr. doc. relational data RDF + RDF Schema information exchange

848 views • 68 slides
What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by

What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by

What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by international standards body the World Wide Web Consortium (W3C).[1] ... By encouraging the inclusion of semantic content in web pages, the

579 views • 44 slides
Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly

Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly

SemEval 2014 Task-3 Cross-Level Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly focused on similar types of lexical items Semantic Similarity What if we have different types of inputs? CLSS:

971 views • 47 slides
Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex:

Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex:

Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex: dog, cat, lion, unannotated texts lizard, snake assignments for words. For example: blogger HUMAN sedan VEHICLE AK-47 WEAPON N best words

344 views • 8 slides
RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic

RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic

RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic Web does not mean computers are going to understand the meaning of everything on the web does mean that we can create some standards ways of

344 views • 33 slides
Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Enterprise Architecture in SOA: Coverage Models and Methodologies Going Semantic Semantic technology May 23 rd , 2005 Enterprise architecture and semantic technology Enterprise architecture maturity model Capabilities of semantic

244 views • 9 slides
FT Consultation An NHS Foundation Trust The Trust is applying to become an NHS Foundation Trust

FT Consultation An NHS Foundation Trust The Trust is applying to become an NHS Foundation Trust

FT Consultation An NHS Foundation Trust The Trust is applying to become an NHS Foundation Trust Your Local Mental Health NHS Trust Implementation of Involvement Agenda National accreditation for Memory Service Team (Bloxwich Hospital)

763 views • 14 slides
PGP web of trust Web of trust From:

PGP web of trust Web of trust From:

PGP web of trust Web of trust From: h2p://pgp.cs.uu.nl/plot/ The PGP web of trust can be viewed as a directed graph where the points are

558 views • 10 slides
Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10,

Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10,

Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10, 2016 Roadmap Semantic Analysis Semantic attachments Extended example Quantifier scope Earley Parsing and Semantics

588 views • 15 slides
Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545

Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545

Semantic Processing Semantic Representation FOPC Inference Issues Description Logics Semantic Processing Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545 Dept. of Linguistics, Indiana

585 views • 44 slides
Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of

Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of

Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of Web technologies and standards Trust Rules Proof Digital Signature Data Logic Data Self- semantics Ontology vocabulary descr. doc.

747 views • 49 slides
Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic

Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic

Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic Similarity; how similar are a pair of lexical items? Semantic Similarity Semantic Similarity Semantic Similarity Sentence level

1.42k views • 127 slides
Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun,

Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun,

Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun, Xianpei Han Institute of Software, Chinese Academy of Sciences Task: Semantic Parsing Translate natural language sentences to meaning

1.4k views • 82 slides
Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web?

Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web?

Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web? Technologies Systems Systems Services Infrastructures I f t t Knowledge, information, data A lot of that Introduction to the

559 views • 29 slides
Semantic Analysis CMSC 35100 Natural Language Processing May 8, 2003 Roadmap Semantic

Semantic Analysis CMSC 35100 Natural Language Processing May 8, 2003 Roadmap Semantic

Semantic Analysis CMSC 35100 Natural Language Processing May 8, 2003 Roadmap Semantic Analysis Motivation: Understanding commands Approach I: Syntax-driven semantic analysis Augment productions with semantic component

334 views • 16 slides
Semantic Web: a short introduction Ivan Herman, Semantic Web Activity Lead, W3C Webelopers

Semantic Web: a short introduction Ivan Herman, Semantic Web Activity Lead, W3C Webelopers

Semantic Web: a short introduction Ivan Herman, Semantic Web Activity Lead, W3C Webelopers Day, Internet NG Conference, Isabel Plaza (Madrid), October 17, 2007 (2) > Towards a Semantic Web The current Web represents information using

722 views • 61 slides
Semantic segmentation Image classification Object detection Semantic segmentation Evolution

Semantic segmentation Image classification Object detection Semantic segmentation Evolution

Accel : A Corrective Fusion Network for Efficient Semantic Segmentation on Video Samvit Jain , Xin Wang , Joseph Gonzalez RISE Lab, UC Berkeley Semantic segmentation Image classification Object detection Semantic segmentation Evolution

857 views • 13 slides
New Challenges in New Challenges in Semantic Concept Detection Semantic Concept Detection M.-F.

New Challenges in New Challenges in Semantic Concept Detection Semantic Concept Detection M.-F.

New Challenges in New Challenges in Semantic Concept Detection Semantic Concept Detection M.-F. Weng, C.-K. Chen, Y.-H. Yang, R.-E. Fan, Y.-T. Hsieh, Y.-Y. Chuang, W. H. Hsu, and C.-J. Lin National Taiwan University Preliminaries for Semantic

367 views • 16 slides
4. Semantic Processing and Attributed Grammars 1 Semantic Processing The parser checks only the

4. Semantic Processing and Attributed Grammars 1 Semantic Processing The parser checks only the

4. Semantic Processing and Attributed Grammars 1 Semantic Processing The parser checks only the syntactic correctness of a program Tasks of semantic processing Checking context conditions - Declaration rules - Type checking Symbol

402 views • 13 slides
Module 13 Introduction to Semantic Technology, Ontologies and the Semantic Web Module 13 Outline

Module 13 Introduction to Semantic Technology, Ontologies and the Semantic Web Module 13 Outline

Module 13 Introduction to Semantic Technology, Ontologies and the Semantic Web Module 13 Outline 10.30-12.30 Introduction to the Semantic Web Ontologies Semantic Web related standards 12.30-14.00 Lunch break 14.00-16.00 Semantic

1.14k views • 85 slides
W3C and the Semantic Web Charles McCathieNevile - charles@w3.org Who is W3C? What do they do?

W3C and the Semantic Web Charles McCathieNevile - charles@w3.org Who is W3C? What do they do?

3/17/2015 Semantic Web for Human Rights Documentation W3C and the Semantic Web Charles McCathieNevile - charles@w3.org Who is W3C? What do they do? What is the Semantic Web? What is RDF? Why is it interesting? Who is W3C An international

352 views • 6 slides
NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For

NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For

NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For ACM CCS I ndustry/ Govt Track Oct. 26, 2004 Carl Landwehr ( clandweh@nsf.gov ) Cyber Trust Coordinator National Science Foundation What s the

439 views • 17 slides

More recommend