Pioneer: verifying code integrity and enforcing untampered code execution on legacy systems

TitlePioneer: verifying code integrity and enforcing untampered code execution on legacy systems
Publication TypeJournal Articles
Year of Publication2005
AuthorsSeshadri A, Luk M, Elaine Shi, Perrig A, van Doorn L, Khosla P
JournalACM SIGOPS Operating Systems Review
Volume39
Issue5
Pagination1 - 16
Date Published2005
ISBN Number0163-5980
Keywordsdynamic root of trust, rootkit detection, self-check-summing code, software-based code attestation, verifiable code execution
Abstract

We propose a primitive, called Pioneer, as a first step towards verifiable code execution on untrusted legacy hosts. Pioneer does not require any hardware support such as secure co-processors or CPU-architecture extensions. We implement Pioneer on an Intel Pentium IV Xeon processor. Pioneer can be used as a basic building block to build security systems. We demonstrate this by building a kernel rootkit detector.

URLhttp://doi.acm.org/10.1145/1095809.1095812