Change search
ReferencesLink to record
Permanent link

Direct link
A Security Study for Non-Internet Connected Managed Software
KTH, School of Information and Communication Technology (ICT), Communication Systems, CoS. (Radio Systems Laboratory/CCS)
2012 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

This master thesis project aims to improve the security of managed software developed at SCANIA's research and development group NEVE. The thesis will present several security schemes that can be effective against tampering, theft, and reverse engineering of application. The schemes presented were selected to ensure confidentiality, integrity, authenticity, and authentication of applications. NEVE’s software will be analyzed and compared against state of the art solutions. A theoretical threat analysis will be presented, corroborated by empirical reverse engineering attacks. The final part of this thesis introduces a new security scheme for C# .NET programs operating without requiring an internet connection.

Abstract [sv]

Denna uppsats försöker förbättra säkerheten av [managed software] utvecklad hos SCANIAS forsknings- och utvecklingsgrupp NEVE. Den visar på flera säkerhetslösningar som kan vara effektiva mot manipulation, stöld och omvänd ingenjörskonst av applikationer. De säkerhetslösningar som presenteras valdes för att säkerställa sekretess, integritet, äkthet och autentisering hos applikationer. NEVEs mjukvara kommer att analyseras och ställs mot de allra senaste lösningarna. En teoretisk hotanalys kommer att presenteras, förstärkt med attacker baserat empiriskt omvänd ingenjörskonst. Den sista delen av denna uppsats introducerar en ny säkerhetslösning. Den riktar sig mot program skrivna i C# .NET som inte kräver en uppkoppling mot internet.

Place, publisher, year, edition, pages
2012. , 85 p.
Trita-ICT-EX, 2012:149
Keyword [en]
.Net Security, Reverse Engineering, Cryptography, C#, Information Security, zero-knowledge
National Category
Communication Systems
URN: urn:nbn:se:kth:diva-99047OAI: diva2:540758
Subject / course
Communications Systems
Educational program
Master of Science - Information and Communication Systems Security
2012-07-09, Seminar room "Motola", Isafjordsgatan 22, Kista, 13:00 (English)
Available from: 2012-07-31 Created: 2012-07-11 Last updated: 2013-09-09Bibliographically approved

Open Access in DiVA

fulltext(1938 kB)229 downloads
File information
File name FULLTEXT01.pdfFile size 1938 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Galassi De Orchi, Tommaso
By organisation
Communication Systems, CoS
Communication Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 229 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 331 hits
ReferencesLink to record
Permanent link

Direct link