You are here: Home / News / Seminário de 05/06/18

Seminário de 05/06/18

Seminário com a Professora Visitante Daniela Oliveira nesta terça-feira, 05/junho/2018, às 10:00 no Auditório do DInf. Compareçam!

Dynamic Information Flow for IoT in Hardware 

Speaker: Dr. Daniela Oliveira, Dept. of Electrical and Computer Engineering, University of Florida (UFMG/DCC Alumnus) 

In this talk I will discuss the architecture and initial evaluation results for REVELARE - a hardware-supported dynamic information flow tracking (DIFT) framework to enhance IoT security and forensics. REVELARE consists of the following components: (i) a DIFT-enabling IP core for the ARM and the RISC-V architectures, which complements the main processor with DIFT capabilities, (ii) two DIFT-based security policies (prevention of memory corruption and in-memory-only attacks) enforced by hardware whose accuracy is enhanced by the capture of DIFT indirect flows, and (iii) a mechanism for IoT virtualization-based security analysis and forensics, with the implementation of two types of security/forensics analyses: causality graphs, and personalized (per-device) anomaly detection. Our preliminary evaluation on software showed that REVELARE could detect six advanced in-memory-only injecting malware samples (including reflective DLL injection, process hollowing, and code injection). We also analyzed false positive rate with a sample of 90 non-injecting malware samples and 14 benign software from various categories and REVELARE presented a very low false positive rate of 2%, which gives us confidence on its potential for securing IoT devices.

DANIELA OLIVEIRA is an Associate Professor in the Department of Electrical and Computer Engineering at the University of Florida. She received her B.S. and M.S. degrees in Computer Science from the Federal University of Minas Gerais in Brazil. She then earned her Ph.D. in Computer Science from the University of California at Davis. Her main research interest is interdisciplinary computer security, where she employs successful ideas from other fields to make computer systems more secure. Her current research interests include systems and IoT attack forensics via dynamic information flow tracking, adding uncertainty to OS behavior to increase attackers’ work factor, understanding and addressing spear phishing susceptibility, cross-layer and personalized security, and understanding developer’s security blind spots. She received a National Science Foundation CAREER Award in 2012 for her innovative research into operating systems' defense against attacks using virtual machines and the 2014 Presidential Early Career Award for Scientists and Engineers (PECASE) from President Obama. She is a National Academy of Sciences Kavli Fellow and a National Academy of Engineers Frontiers of Engineering Symposium Alumni. Her research has been sponsored by National Science Foundation (NSF), Defense Advanced Research Projects Agency (DARPA), MIT Lincoln Laboratory, and Google.

« August 2018 »