CAREER: Improving the Lifecycle Security of Microcontroller Devices

职业：提高微控制器设备的生命周期安全性

• 批准号: 2238264
• 负责人: Le Guan
• 金额: $ 53.26万
• 依托单位: University of Georgia Research Foundation Inc
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2023
• 资助国家: 美国
• 起止时间: 2023-03-15 至 2028-02-29
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2238264&HistoricalAwards=false
• 关键词: CAREER; Improving; Lifecycle; Security; Microcontroller

Microcontroller units (MCUs) drive many security- and safety-critical embedded applications. However, they inherit software bugs present in all computing systems. Firmware vulnerabilities have thus become one of the main targets of real-world exploitation. Successful exploitation can cause disastrous consequences to critical infrastructures (e.g., power outages and plant damage) and endanger human lives (e.g., by disabling a pacemaker). In the software community, there has been a rich body of knowledge regarding bug discovery and attack mitigation. However, it is notoriously difficult to apply these results to MCU firmware. Indeed, MCU firmware runs on resource-constrained hardware with heterogeneous architectures, integrates custom runtime environments, and makes unpredictable interactions with the physical world. This renders existing dynamic analysis techniques incompatible, expensive, and ineffective. The proposed research will cross the technical barriers imposed by the aforementioned challenges and greatly enrich the arsenal of MCU firmware security with new knowledge, frameworks, analysis tools, and supporting techniques. Due to the critical roles that MCU devices take in real life, this project will make huge progress towards securing the cyberspace and enhancing national security. A key observation of this project is that MCU devices usually cannot operate by themselves. Rather, they have to rely on certain external computers in their entire life cycles. Therefore, around a unifying theme of offloading security analysis from the original application workload to more capable nearby workstations or hubs, this project will deliver a series of new methodologies and theories to significantly improve the lifetime security of MCU devices. With the decoupled design, three research thrusts will be investigated. The first thrust focuses on new techniques to automatically discover firmware vulnerabilities, such as bugs lurking deeply in the program space. The second thrust targets run-time monitoring of firmware execution in the production environment, allowing the stakeholders to detect ongoing attacks and catch bugs that never happen during in-house testing. The third thrust, cooperating with the second thrust, investigates vulnerability remediation techniques, in particular, how to efficiently diagnose production bugs without leaking privacy. The outcomes of this research will be freely distributed to the community. This research will also be integrated into the investigator’s education plan to develop a set of Virtual Machine-based labs to educate young minds and future embedded system developers and architects about MCU security.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

微控制器单元（MCU）驱动着许多对安全和安全至关重要的嵌入式应用。然而，它们继承了所有计算系统中存在的软件错误。固件漏洞因此成为现实世界利用的主要目标之一。成功利用漏洞可能会对关键基础设施造成灾难性后果（例如，停电和工厂损坏）并危及人的生命（例如，通过禁用起搏器）。在软件社区中，已经有了关于缺陷发现和攻击缓解的丰富知识。然而，将这些结果应用于MCU固件是非常困难的。事实上，MCU固件在具有异构架构的资源受限硬件上运行，集成自定义运行时环境，并与物理世界进行不可预测的交互。这使得现有的动态分析技术不兼容、昂贵且无效。拟议的研究将跨越上述挑战所带来的技术障碍，并通过新的知识，框架，分析工具和支持技术极大地丰富MCU固件安全性。由于MCU设备在真实的生活中发挥的关键作用，该项目将在保护网络空间和增强国家安全方面取得巨大进展。该项目的一个关键观察结果是，MCU设备通常不能自行操作。相反，它们在整个生命周期中必须依赖某些外部计算机。因此，围绕将安全分析从原始应用工作负载卸载到附近功能更强大的工作站或集线器的统一主题，该项目将提供一系列新的方法和理论，以显着提高MCU设备的生命周期安全性。通过解耦设计，将研究三个研究重点。第一个重点是自动发现固件漏洞的新技术，比如潜伏在程序空间深处的bug。第二个目标是对生产环境中的固件执行进行运行时监控，允许利益相关者检测正在进行的攻击并捕获内部测试期间从未发生的错误。第三个重点与第二个重点合作，研究漏洞修复技术，特别是如何在不泄露隐私的情况下有效地诊断生产错误。这项研究的成果将免费分发给社区。这项研究也将被整合到研究者的教育计划中，开发一套基于虚拟机的实验室，以教育年轻人和未来的嵌入式系统开发人员和架构师关于MCU安全的知识。该奖项反映了NSF的法定使命，并通过使用基金会的知识价值和更广泛的影响审查标准进行评估，被认为值得支持。