Collaborative Research: SaTC: CORE: Medium: Compiler-Assisted Embedded Security

协作研究：SaTC：核心：中：编译器辅助嵌入式安全

• 批准号: 2154415
• 负责人: Robert Walls
• 金额: $ 59.98万
• 依托单位: Worcester Polytechnic Institute
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2022
• 资助国家: 美国
• 起止时间: 2022-06-01 至 2026-05-31
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2154415&HistoricalAwards=false
• 关键词: Collaborative; Research; SaTC; CORE; Medium

There is a multi-billion dollar market for low-cost, energy-efficient embedded systems. Unfortunately, as the software for such systems is typically developed in C, they suffer from the same programmer-induced memory errors that have plagued general-purpose systems. Unlike most general-purpose computers, however, exploitation often leads to real-world physical consequences. This project will develop new methods to secure embedded software. Rather than place the security burden entirely on developers of embedded systems, the objective of this project is to shift the enforcement of fundamental security properties to the compiler, using a combination of compile-time static analysis, runtime instrumentation, and hardware support. The project will also consider compiler enhancements to enable end-developer security customization and promote software longevity.The project will provide a scientific foundation for compiler-assisted security on low-cost embedded systems. Such systems are already widely deployed in existing domains, such as cyber-physical systems, and are increasingly a part of emerging technologies, such as the internet-of-things (IoT). The project will produce open-source software and educational artifacts for both researchers and developers, including compiler enhancements, benchmark applications, and tutorials on the artifacts to be presented at tutorials and conferences. Finally, this project will improve student education outcomes at the participating institutions by integrating the research activities with security competitions for undergraduate students.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

低成本，节能嵌入式系统有数十亿美元的市场。不幸的是，由于通常在C中开发了此类系统的软件，因此它们遭受了困扰通用系统的相同程序员诱导的内存错误。但是，与大多数通用计算机不同，剥削通常会导致现实世界的物理后果。 该项目将开发新的方法来保护嵌入式软件。该项目的目的不是将安全负担完全放在嵌入式系统的开发人员身上，而是使用编译时静态分析，运行时仪器和硬件支持的组合将基本安全属性的执行转移到编译器。该项目还将考虑编译器的增强功能，以实现最终开发人员的安全自定义并促进软件寿命。该项目将为低成本嵌入式系统的编译器辅助安全性提供科学基础。这样的系统已经广泛地部署在现有领域，例如网络物理系统，并且越来越多地是新兴技术的一部分，例如The Internet Internet（IoT）。该项目将为研究人员和开发人员生产开源软件和教育文物，包括编译器的增强功能，基准应用以及有关在教程和会议上介绍的文物的教程。最后，该项目将通过将研究活动与本科生的安全竞赛相结合，从而改善参与机构的学生教育成果。该奖项反映了NSF的法定任务，并被认为是值得通过基金会的知识分子和更广泛影响的评估标准来通过评估来获得支持的。