A4 Refereed article in a conference publication
Towards a diversification framework for operating system protection
Authors: Rauti Sampsa, Holvitie Johannes, Leppänen Ville
Editors: Boris Rachev, Angel Smrikarov
Conference name: International conference on computer systems and technologies
Publication year: 2014
Book title : CompSysTech '14 Proceedings of the 15th International Conference on Computer Systems and Technologies
Series title: ACM International Conference Proceeding Series
Number in series: 883
First page : 286
Last page: 293
ISBN: 978-1-4503-2753-4
DOI: https://doi.org/10.1145/2659532.2659642
In order to use resources of a computer, malware has to know the interfaces provided by the operating system. If we make these critical interfaces unique by diversifying the operating system and user applications, a piece of malware can no longer successfully interact with its environment. Diversification can be considered as a computer-specific secret. This paper discusses how this API diversification could be performed. We also study how much work would be needed to diversify the Linux kernel in order to hide the system call interface from malware.
