Skip to Main content Skip to Navigation
Conference papers

Lazart: A Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections

Abstract : In the domain of smart cards, secured devices must be protected against high level attack potential [1]. According to norms such as the Common Criteria [2], the vulnerability analysis must cover the current state-of-the-art in term of attacks. Nowadays, a very classical type of attack is fault injection, conducted by means of laser based techniques. We propose a global approach, called Lazart, to evaluate code robustness against fault injections targeting control flow modifications. The originality of Lazart is twofolds. First, we encompass the evaluation process as a whole: starting from a fault model, we produce (or establish the absence of) attacks, taking into consideration software countermeasures. Furthermore, according to the near state-of-the-art, our methodology takes into account multiple transient fault injections and their combinatory. The proposed approach is supported by an effective tool suite based on the LLVM format [3] and the KLEE symbolic test generator [4].
Complete list of metadata

Cited literature [21 references]  Display  Hide  Download

https://hal.univ-grenoble-alpes.fr/hal-01229274
Contributor : Maxime Puys Connect in order to contact the contributor
Submitted on : Monday, November 16, 2015 - 2:16:10 PM
Last modification on : Tuesday, October 19, 2021 - 1:48:11 PM
Long-term archiving on: : Friday, April 28, 2017 - 9:34:11 PM

File

ICST14.pdf
Files produced by the author(s)

Identifiers

Collections

Citation

Marie-Laure Potet, Laurent Mounier, Maxime Puys, Louis Dureuil. Lazart: A Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections. Seventh IEEE International Conference on Software Testing, Verification and Validation, Mar 2014, Cleveland, United States. ⟨10.1109/ICST.2014.34⟩. ⟨hal-01229274⟩

Share

Metrics

Record views

1166

Files downloads

1771