Advanced Search
CS Search Google Search
Subscribers, please login

Published Articles >> Table of Contents >> Abstract

18th Annual Computer Security Applications Conference (ACSAC '02)   p. 403
Malicious Code Detection for Open Firmware
Frank Adelstein, ATC- NY
Matt Stillerman, ATC- NY
Dexter Kozen, Cornell University
Full Article Text: Download PDF of full textBuy this articleGet full text from IEEE Xplore

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSAC.2002.1176312
Send link to a friend

Abstract
Malicious boot firmware is a largely unrecognized but significant security risk to our global information infrastructure. Since boot firmware executes before the operating system is loaded, it can easily circumvent any operating system-based security mechanism. Boot firmware programs are typically written by third-party device manufacturers and may come from various suppliers of unknown origin. In this paper we describe an approach to this problem based on load-time verification of onboard device drivers against a standard security policy designed to limit access to system resources. We also describe our ongoing effort to construct a prototype of this technique for Open Firmware boot platforms.
Additional Information

Citation:  Frank Adelstein, Matt Stillerman, Dexter Kozen, "Malicious Code Detection for Open Firmware," acsac, p. 403,  18th Annual Computer Security Applications Conference (ACSAC '02),  2002

Similar Articles

Abstract Contents
Abstract
Citation

Download Citation
Ascii Text
BibTex
RefWorks
Procite/RefMan/Endnote




Free access to

  • Abstracts
  • Selected PDFs

Electronic subscribers login to:

  • Access HTML/PDFs of full text articles

Subscription information

Get a Web account

PDFs require Adobe Acrobat Reader.

Peer Review Notice

Give us Feedback