Security of MPSoCs is an emerging area of concern in embedded systems. Security is jeopardized by code injection attacks, which are the most common types of software attacks. Previous attempts to detect code injection in MPSoCs have been burdened with significant performance overheads. In this work, we present a hardware/software methodology "SHIELD" to detect code injection attacks in MPSoCs. SHIELD instruments the software programs running on application processors in the MPSoC and also extracts control flow and basic block execution time information for runtime checking.

We employ a dedicated security processor (monitor processor) to supervise the application processors on the MPSoC. Custom hardware is designed and used in the monitor and application processors. The monitor processor uses the custom hardware to rapidly analyze information communicated to it from the application processors at runtime. We have implemented SHIELD on a commercial extensible processor (Xtensa LX2) and tested it on a multiprocessor JPEG encoder program. In addition to code injection attacks, the system is also able to detect 83% of bit flips errors in the control flow instructions.

The experiments show that SHIELD produces systems with runtime which is at least 9 times faster than the previous solution. SHIELD incurs a runtime (clock cycles) performance overhead of only 6.6% and an area overhead of 26.9%, when compared to a non-secure system.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Divya Arora , Srivaths Ravi , Anand Raghunathan , Niraj K. Jha, Secure Embedded Processing through Hardware-Assisted Run-Time Monitoring, Proceedings of the conference on Design, Automation and Test in Europe, p.178-183, March 07-11, 2005  [doi>10.1109/DATE.2005.266]
	2	Crispin Cowan , Calton Pu , Dave Maier , Heather Hintony , Jonathan Walpole , Peat Bakke , Steve Beattie , Aaron Grier , Perry Wagle , Qian Zhang, StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks, Proceedings of the 7th conference on USENIX Security Symposium, p.5-5, January 26-29, 1998, San Antonio, Texas
	3	Nurit Dor , Michael Rodeh , Mooly Sagiv, CSSV: towards a realistic tool for statically detecting all buffer overflows in C, Proceedings of the ACM SIGPLAN 2003 conference on Programming language design and implementation, June 09-11, 2003, San Diego, California, USA
	4	Joan G. Dyer , Mark Lindemann , Ronald Perez , Reiner Sailer , Leendert van Doorn , Sean W. Smith , Steve Weingart, Building the IBM 4758 Secure Coprocessor, Computer, v.34 n.10, p.57-66, October 2001  [doi>10.1109/2.955100]
	5	D. Larochelle and D. Evans. Statically detecting likely buffer overflow vulnerabilities, pages 177--190, 2001.
	6	Eric Larson , Todd Austin, High coverage detection of input-related security facults, Proceedings of the 12th conference on USENIX Security Symposium, p.9-9, August 04-08, 2003, Washington, DC
	7	J. Mcgregor et al. A processor architecture defense against buffer overflow attacks. pages 243--250, 2003.
	8	Milena Milenković , Aleksandar Milenković , Emil Jovanov, Hardware support for code integrity in embedded processors, Proceedings of the 2005 international conference on Compilers, architectures and synthesis for embedded systems, September 24-27, 2005, San Francisco, California, USA  [doi>10.1145/1086297.1086306]
	9	George C. Necula , Scott McPeak , Westley Weimer, CCured: type-safe retrofitting of legacy code, Proceedings of the 29th ACM SIGPLAN-SIGACT symposium on Principles of programming languages, p.128-139, January 16-18, 2002, Portland, Oregon
	10	J. Ohlsson, M. Rimn, and U. Gunneflo. A study of the effects of transient fault injection into a 32-bit rice with built-in watchdog. In FTCS, pages 316--325, 1992.
	11	Krutartha Patel , Sridevan Parameswaran , Seng Lin Shee, Ensuring secure program execution in multiprocessor embedded systems: a case study, Proceedings of the 5th IEEE/ACM international conference on Hardware/software codesign and system synthesis, September 30-October 03, 2007, Salzburg, Austria  [doi>10.1145/1289816.1289833]
	12	Jonathan Pincus , Brandon Baker, Beyond Stack Smashing: Recent Advances in Exploiting Buffer Overruns, IEEE Security and Privacy, v.2 n.4, p.20-27, July 2004  [doi>10.1109/MSP.2004.36]
	13	Roshan G. Ragel , Sri Parameswaran, IMPRES: integrated monitoring for processor reliability and security, Proceedings of the 43rd annual conference on Design automation, July 24-28, 2006, San Francisco, CA, USA  [doi>10.1145/1146909.1147041]
	14	Srivaths Ravi , Anand Raghunathan , Paul Kocher , Sunil Hattangady, Security in embedded systems: Design challenges, ACM Transactions on Embedded Computing Systems (TECS), v.3 n.3, p.461-491, August 2004  [doi>10.1145/1015047.1015049]
	15	C. Rowen and D. Maydan. Automated processor generation for system-on-chip. Technical report, Sept 2001.
	16	Michael A. Schuette , John Paul Shen, Processor Control Flow Monitoring Using Signatured Instruction Streams, IEEE Transactions on Computers, v.36 n.3, p.264-276, March 1987  [doi>10.1109/TC.1987.1676899]
	17	M. Shafique, L. Bauer, and J. Henkel. An optimized application architecture of the h.264 video encoder for application specific platforms. ESTIMedia 2007, pages 119--124, 4--5 Oct. 2007.
	18	Seng Lin Shee , Sri Parameswaran, Design methodology for pipelined heterogeneous multiprocessor system, Proceedings of the 44th annual conference on Design automation, June 04-08, 2007, San Diego, California  [doi>10.1145/1278480.1278682]
	19	D. Wagner et al. A first step towards automated detection of buffer overrun vulnerabilities. In Network and Distributed System Security Symposium, pages 3--17, San Diego, CA, February 2000.
	20	Y. Younan, W. Joosen, and F. Piessens. Code injection in C and C++: A survey of vulnerabilities and countermeasures. Technical Report CW386, Departement Computerwetenschappen, Katholieke Universiteit Leuven, July 2004.