An improved model for secure cryptographic integrity verification of local code

Payne, C. (2007) An improved model for secure cryptographic integrity verification of local code. In: SECRYPT 2007 - International Conference on Security and Cryptography, 28-37 July 2007, Barcelona.

Abstract

Trusted fingerprinting is a new model for cryptographic integrity verification of executables and related objects to protect users against illicit modifications to system programs and attacks by malicious code. In addition to a number of other novel features, trusted fingerprinting improves upon previous designs by managing the privileges assigned to processes based upon their verification status. It also provides greater flexibility as, in addition to globally verified programs, each user can independently flag for verification software relevant to their individual security requirements. Trusted fingerprinting also allows for automatic updates to fingerprints of objects where these modifications are made by trusted code.