English

ENOLA: Efficient Control-Flow Attestation for Embedded Systems

Cryptography and Security 2025-01-22 v1

Abstract

Microcontroller-based embedded systems are vital in daily life, but are especially vulnerable to control-flow hijacking attacks due to hardware and software constraints. Control-Flow Attestation (CFA) aims to precisely attest the execution path of a program to a remote verifier. However, existing CFA solutions face challenges with large measurement and/or trace data, limiting these solutions to small programs. In addition, slow software-based measurement calculations limit their feasibility for microcontroller systems. In this paper, we present ENOLA, an efficient control-flow attestation solution for low-end embedded systems. ENOLA introduces a novel authenticator that achieves linear space complexity. Moreover, ENOLA capitalizes on the latest hardware-assisted message authentication code computation capabilities found in commercially-available devices for measurement computation. ENOLA employs a trusted execution environment, and allocates general-purpose registers to thwart memory corruption attacks. We have developed the ENOLA compiler through LLVM passes and attestation engine on the ARMv8.1-M architecture. Our evaluations demonstrate ENOLA's effectiveness in minimizing data transmission, while achieving lower or comparable performance to the existing works.

Keywords

Cite

@article{arxiv.2501.11207,
  title  = {ENOLA: Efficient Control-Flow Attestation for Embedded Systems},
  author = {Md Armanuzzaman and Engin Kirda and Ziming Zhao},
  journal= {arXiv preprint arXiv:2501.11207},
  year   = {2025}
}

Comments

20 pages and 11 figures

R2 v1 2026-06-28T21:10:54.121Z