Firmware vulnerability analysis based on formal verification of software and hardware

Peng-hui ZHANG,Xi TIAN,Kang-wei LOU

doi:10.11959/j.issn.2096-109x.2016.00071

网络与信息安全学报 (Jul 2016)

Firmware vulnerability analysis based on formal verification of software and hardware

Peng-hui ZHANG,Xi TIAN,Kang-wei LOU

Affiliations

Peng-hui ZHANG,Xi TIAN,Kang-wei LOU: School of Electronic Science and Engineering,National University of Defense Technology,Changsha 410003,China

DOI: https://doi.org/10.11959/j.issn.2096-109x.2016.00071
Journal volume & issue: Vol. 2, no. 7
pp. 59 – 68

Abstract

Read online

In order to analyze the potential vulnerabilities in the firmware systematically and effectively,a formal verification method based on TLA,in a collaborated form of software and hardware was proposed.With this method,the interaction mechanism of software and hardware in the computer boot process was modeled and analyzed.By adjusting the attack model,a secure vulnerability in the update process of the firmware was found,and its existence by an experiment,which proved the reliability of formal verification was demonstrated.

Published in 网络与信息安全学报

ISSN: 2096-109X (Print)
Publisher: POSTS&TELECOM PRESS Co., LTD
Country of publisher: China
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: http://www.infocomm-journal.com/cjnis/CN/2096-109X/home.shtml

About the journal

Abstract

Keywords