Dynamic Information Flow Tracking for Embedded Binaries using SystemC-based Virtual Prototypes

Pascal Pieper, Vladimir Herdt, Daniel Große, Rolf Drechsler

In: 57th Design Automation Conference. Design Automation Conference (DAC-2020) July 19-23 San Francisco United States 2020.


Avoiding security vulnerabilities is very important forembedded systems.Dynamic Information Flow Tracking(DIFT)is a powerful technique to analyze SW with respect to securitypolicies in order to protect the system against a broad range ofsecurity related exploits. However, existing DIFT approaches eitherdo not exist forVirtual Prototypes(VPs) or fail to model complexhardware/software interactions.In this paper, we present a novel approach that enables earlyand accurate DIFT of binaries targeting embedded systems withcustom peripherals. Leveraging the SystemC framework, our DIFTengine tracks accurate data flow information alongside the programexecution to detect violations of security policies at run-time. Wedemonstrate the effectiveness and applicability of our approach byextensive experiments.


Deutsches Forschungszentrum für Künstliche Intelligenz
German Research Center for Artificial Intelligence