kth.sePublikationer KTH
EnglishSvenskaNorsk
Ändra sökning
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
Machine Learning-Assisted Side-Channel Analysis for Software Integrity Verification
Ericsson Res, Lund, Sweden.
Ericsson Res, Lund, Sweden.
Ericsson Res, Lund, Sweden.
KTH, Skolan för elektroteknik och datavetenskap (EECS), Elektroteknik, Elektronik och inbyggda system.ORCID-id: 0000-0001-7382-9408
2025 (Engelska)Ingår i: 2025 IEEE European Test Symposium, ETS 2025, Institute of Electrical and Electronics Engineers (IEEE), 2025Konferensbidrag, Publicerat paper (Refereegranskat)
Abstract [en]

Traditional cryptographic methods for software integrity verification rely on validating cryptographic signatures attached to software binaries. However, these methods primarily focus on load-time measurements and may be circumvented by an attacker interfering with the boot process. To address this limitation, we propose a novel approach that uses side-channel data collected during software execution to generate a proof of software integrity. Through a side-channel trace encoder, we generate cryptographic keys derived from the unique side-channel profiles of software processes. This ensures that only the processes with expected side-channel characteristics can produce the valid key, effectively linking software integrity verification to runtime behavior. We demonstrate the feasibility of this approach in a secure boot setting compliant with the TCG DICE framework. The presented solution provides holistic boot protection while enhancing resilience against attacks such as fault injection, misconfiguration, and downgrading of security algorithms.
Ort, förlag, år, upplaga, sidor
Institute of Electrical and Electronics Engineers (IEEE), 2025.
Serie
Proceedings of the European Test Symposium, ISSN 1530-1877
Nyckelord [en]
Monitoring, machine learning, secure boot, security, side-channel analysis
Nationell ämneskategori
Datavetenskap (datalogi)
Identifikatorer
URN: urn:nbn:se:kth:diva-374670DOI: 10.1109/ETS63895.2025.11049653ISI: 001540479400053Scopus ID: 2-s2.0-105011078897OAI: oai:DiVA.org:kth-374670DiVA, id: diva2:2026147
Konferens
2025 European Test Symposium-ETS-Annual, MAY 26-30, 2025, Tallinn, Estonia
Anmärkning

Part of ISBN 979-8-3315-9451-0; 979-8-3315-9450-3

QC 20260108

Tillgänglig från: 2026-01-08 Skapad: 2026-01-08 Senast uppdaterad: 2026-01-08Bibliografiskt granskad

Open Access i DiVA

Fulltext saknas i DiVA

Övriga länkar

Förlagets fulltextScopus

Person

Dubrova, Elena

Sök vidare i DiVA

Av författaren/redaktören
Dubrova, Elena
Av organisationen
Elektronik och inbyggda system
Datavetenskap (datalogi)

Sök vidare utanför DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetricpoäng

doi
urn-nbn
Totalt: 26 träffar
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG
|
KTH Bibliotek
|
DiVA support
|
Registrera i DiVA
|
Spikning av avhandling
|
SwePub
|
Om öppen tillgång