Using ARM TrustZone to build a Trusted Language Runtime for mobile applications

International Conference on Architectural Support for Programming Languages and Operating Systems - ASPLOS

Volumn , Issue , 2014, Pages 67-80

  Santos, Nuno ^a   Raj, Himanshu ^b   Saroiu, Stefan ^b   Wolman, Alec ^b  

^a INSTITUTO SUPERIOR TÉCNICO   (Portugal)

^b MICROSOFT RESEARCH   (United States)

Author keywords

ARM TrustZone; Language runtime; Mobile computing; Trusted computing

Indexed keywords

ARM TRUSTZONE; GARBAGE COLLECTION; MOBILE APPLICATIONS; PERFORMANCE COSTS; RUNTIMES; SECURITY BREACHES; TRUSTED COMPONENTS; TRUSTED COMPUTING;

COMPUTER PROGRAMMING LANGUAGES; NETWORK SECURITY;

MOBILE COMPUTING;

EID: 84897768729     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2541940.2541949     Document Type: Conference Paper

References (38)

1. Android. http://www.android.com.
2. Dalvik VM Internals. https://sites.google.com/site/io/dalvik-vm- internals.
3. Apple iOS 6. http://www.apple.com/ios.
4. Mono. http://www.mono-project.com/Main×Page/.
5. Common Language Runtime (CLR),. http://msdn.microsoft.com/en-us/library/ 8bs2ecf4.aspx.
6. .NET Micro Framework,. http://www.microsoft.com/netmf/default.mspx.
7. Proxama. http://www.proxama.com/ products-and-services/trustzone.
8. Transaction authentication number. http://www.wikipedia.org/wiki/ Transaction×authentication×number.
9. Tegra 250 Dev Board. https://developer.nvidia.com/tegra-250-development- board-features/.
10. U-boot Bootloader. http://www.denx.de/en/News/WebHome/.
11. Microsoft Windows 8. http://windows.microsoft.com/en-us/windows-8/meet.
12. Porting the .NET Micro Framework. Microsoft Technical White Paper, 2007. http://msdn.microsoft.com/en-us/netframework/bb267253.aspx.
13. Understanding .NET Micro Framework Architecture, 2010. http://msdn.microsoft.com/en-us/library/cc533001.aspx.
14. ARM. ARMSecurity Technology-Building a Secure System using TrustZone Technology. ARM Technical White Paper, 2009. http://infocenter.arm.com/help/ topic/com.arm.doc.prd29-genc-009492c/PRD29-GENC- 009492C×trustzone×security×whitepaper.pdf.
15. A.M. Azab, P. Ning, and X. Zhang. SICE: A Hardware-Level Strongly Isolated Computing Environment for x86 Multi-core Platforms. In Proc. of CCS, 2011.
16. Brickell, Ernie and Camenisch, Jan and Chen, Liqun. Direct Anonymous Attestation. In Proc. of CCS, 2004.
17. D. Brumley and D. Song. Privtrans: automatically partitioning programs for privilege separation. In Proc. of USENIX Security '04, 2004.
18. X. Chen, T. Garfinkel, E. C. Lewis, P. Subrahmanyam, C. A. Waldspurger, D. Boneh, J. Dwoskin, and D. R. K. Ports. Overshadow: A Virtualization-Based Approach to Retrofitting Protection in Commodity Operating Systems. In Proc. of ASP-LOS, 2008.
19. S. Chong, J. Liu, A. C. Myers, X. Qi, K. Vikram, L. Zheng, and X. Zheng. Secure web applications via automatic partitioning. In Proc. of SOSP '07, 2007.
20. W. Enck, P. Gilbert, B.-G. Chun, L. P. Cox, J. Jung, P. Mc-Daniel, and A. N. Sheth. TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones. In Proc of OSDI'10, 2010.
21. T. Garfinkel, B. Pfaff, J. Chow, M. Rosenblum, and D. Boneh. Terra: A Virtual Machine-Based Platform for Trusted Computing. In Proc. of SOSP, 2003.
22. T. C. Group. TPM Main Specification Level 2 Version 1.2, Revision 130, 2006.
23. H. H'artig,M. Hohmuth, N. Feske, C. Helmuth, A. Lackorzynski, F. Mehnert, and M. Peter. The Nizza Secure-System Architecture. CollaborateCom, 2005.
24. M. Hypponen. Malware goes Mobile. Scientific American, November 2006.
25. K. Kostiainen, J.-E. Ekberg, N. Asokan, and A. Rantala. Onboard Credentials with Open Provisioning. In Proc. of ASI-ACCS, 2009.
26. D. Lie, C. A. Thekkath, M. Mitchell, P. Lincoln, D. Boneh, J. C. Mitchell, and M. Horowitz. Architectural Support for Copy and Tamper Resistant Software. In Proc. of ASPLOS, 2000.
27. H. Liu, S. Saroiu, A. Wolman, and H. Raj. Software Abstractions for Trusted Sensors. In Proc. of Mobisys, 2012.
28. J. M. McCune, B. Parno, A. Perrig, M. K. Reiter, and H. Isozaki. Flicker: An Execution Infrastructure for TCBMinimization. In Proc. of EuroSys, 2008.
29. J. M. McCune, Y. Li, N. Qu, Z. Zhou, A. Datta, V. D. Gligor, and A. Perrig. TrustVisor: Efficient TCB Reduction and Attestation. In Proc. of IEEE S&P, 2010.
30. A. C.Myers. JFlow: PracticalMostly-Static Information Flow Control. In Proc. of POPL ?99, 1999.
31. B. Parno, J. R. Lorch, J. R. Douceur, J. Mickens, and J. M. Mccune. Memoir: Practical State Continuity for Protected Modules. In Proc. of IEEE S&P, 2011.
32. PrivacyCA. PrivacyCA. http://privacyca.com.
33. F. Roesner, T. Kohno, A. Moshchuk, B. Parno, H. J. Wang, and C. Cowan. User-Driven Access Control: Rethinking Permission Granting in Modern Operating Systems. In Proc. of IEEE S&P, 2012.
34. N. Santos, H. Raj, S. Saroiu, and A. Wolman. Trusted Language Runtime (TLR): Enabling Trusted Applications on Smartphones. In Proc. of HotMobile, 2011.
35. U. Steinberg and B. Kauer. Nova: A microhypervisor-based secure virtualization architecture. In Eurosys, 2010.
36. G. E. Suh, D. Clarke, B. Gassend, M. van Dijk, and S. Devadas. AEGIS: Architecture for Tamper-Evident and Tamper-Resistant Processing. In Proc. of ICS, 2003.
37. R. Ta-Min, L. Litty, and D. Lie. Splitting Interfaces: Making Trust Between Applications and Operating Systems Congurable. In Proc. of OSDI, 2006.
38. V. Tsai. eMMC v4.41 and v4.5. http://www.jedec.org/sites/default/files/ Victor×Tsai.pdf