DriverGuard: A Fine-grained Protection On I/O Flow
Conference Proceeding Article
Most commodity peripheral devices and their drivers are geared to achieve high performance with security functions being opted out. The absence of security measures invites attacks on the I/O data and consequently threats those applications feeding on them, such as biometric authentication. In this paper, we present the design and implementation of DriverGuard, a hypervisor based protection mechanism which dynamically shields I/O flows such that I/O data are not exposed to the malicious kernel. Our design leverages a composite of cryptographic and virtualization techniques to achieve fine-grained protection. DriverGuard is lightweight as it only needs to protect around 2% of the driver code’s execution. We have tested DriverGuard with three input devices and two output devices. The experiments show that DriverGuard induces negligible overhead to the applications.
Information Security and Trust
Computer Security – ESORICS 2011: 16th European Symposium on Research in Computer Security, Leuven, Belgium, September 12-14
City or Country
CHENG, Yueqiang; DING, Xuhua; and DENG, Robert H..
DriverGuard: A Fine-grained Protection On I/O Flow. (2011). Computer Security – ESORICS 2011: 16th European Symposium on Research in Computer Security, Leuven, Belgium, September 12-14. 6879, 227-244. Research Collection School Of Information Systems.
Available at: http://ink.library.smu.edu.sg/sis_research/1418