Computer Science – Cryptography and Security
Scientific paper
2009-01-22
CCS '08: Proceedings of the 15th ACM conference on Computer and communications security (2008) 15--26
Computer Science
Cryptography and Security
Scientific paper
Harvard architecture CPU design is common in the embedded world. Examples of Harvard-based architecture devices are the Mica family of wireless sensors. Mica motes have limited memory and can process only very small packets. Stack-based buffer overflow techniques that inject code into the stack and then execute it are therefore not applicable. It has been a common belief that code injection is impossible on Harvard architectures. This paper presents a remote code injection attack for Mica sensors. We show how to exploit program vulnerabilities to permanently inject any piece of code into the program memory of an Atmel AVR-based sensor. To our knowledge, this is the first result that presents a code injection technique for such devices. Previous work only succeeded in injecting data or performing transient attacks. Injecting permanent code is more powerful since the attacker can gain full control of the target sensor. We also show that this attack can be used to inject a worm that can propagate through the wireless sensor network and possibly create a sensor botnet. Our attack combines different techniques such as return oriented programming and fake stack injection. We present implementation details and suggest some counter-measures.
Castelluccia Claude
Francillon Aurélien
No associations
LandOfFree
Code injection attacks on harvard-architecture devices does not yet have a rating. At this time, there are no reviews or comments for this scientific paper.
If you have personal experience with Code injection attacks on harvard-architecture devices, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Code injection attacks on harvard-architecture devices will most certainly appreciate the feedback.
Profile ID: LFWR-SCP-O-189653