Media.Player

Instruction-set randomization enhances computer security by enabling system diversity at the lowest hardware/software interface

Summary

Due to the computer industry's increasing reliance on common software tools and hardware architectures, many computer systems to date remain identical and thus vulnerable to the same large-scale security attacks. This technology presents a method to diversify computer systems by providing native hardware support using instruction-set randomization (ISR). ISR randomizes instruction sets that map the lowest-level machine code to computer operations in a unique fashion and decrypts them whenever a task must be performed. In this way, ISR aims to provide a unique random instruction set architecture (ISA) for every deployed system. This technology outlines a number of ways to combat malicious attacks using the ISR diversification approach.

Technology Benefits

Broad security coverage can be achieved through simple modifications in hardwareSeveral times faster and more secure compared to software-based instruction set randomization Strategic micro-architectural optimizations result in virtually zero performance overhead Patent Information:Patent Pending (WO/2014/210277)Tech Ventures Reference: IR CU13367

Technology Application

Securing computers against code injection attacks Encrypting personal dataDeveloping encryption schemesPrevent hacking attempts on computers

Detailed Technology Description

None

*Abstract

None

*Inquiry

Greg MaskelColumbia Technology VenturesTel: (212) 854-8444Email: TechTransfer@columbia.edu

*IR

CU13367

*Principal Investigator

*Publications

Sinha K, Kemerlis V, Pappas V, Sethumadhavan S, Keromytis AD. "Enhancing Security by Diversifying Instruction Sets." Columbia University Academic Commons. 2014.

Country/Region

USA