TrustLite: A security architecture for tiny embedded devices

Proceedings of the 9th European Conference on Computer Systems, EuroSys 2014

Volumn , Issue , 2014, Pages

  Koeberl, Patrick ^a   Schulz, Steffen ^a,d   Sadeghi, Ahmad Reza ^b   Varadharajan, Vijay ^c  

^a INTEL CORPORATION   (United States)

^b DARMSTADT UNIVERSITY OF TECHNOLOGY   (Germany)

^c MACQUARIE UNIVERSITY   (Australia)

^d RUHR UNIVERSITY BOCHUM   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

FIRMWARE; HARDWARE; INTEROPERABILITY;

COMPLEX CONTROL; EMBEDDED DEVICE; EXCEPTION HANDLING; HARDWARE PROTECTION; HARDWARE SECURITY; SECURITY ARCHITECTURE; SOFTWARE MODULES; SUPPORT SYSTEMS;

EMBEDDED SYSTEMS;

EID: 84900427392     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2592798.2592824     Document Type: Conference Paper

References (53)

1. Advanced Micro Devices (AMD). AMD64 Virtualization Codenamed "Pacifica" Technology - Secure Virtual Machine Architecture Reference Manual, 2005.
2. P. Agten, R. Strackx, B. Jacobs, and F. Piessens. Secure compilation to modern processors. In Computer Security Foundations Symposium (CSF). IEEE, 2012.
3. W. A. Arbaugh, D. J. Farber, and J. M. Smith. A secure and reliable bootstrap architecture. In Research in Security and Privacy (S&P). IEEE, 1997.
4. ARM Limited. ARM Security Technology - Building a Secure System using TrustZone Technology, 2009.
5. ARM Limited. ARMv7-M Architecture Reference Manual - Chapter B5, Protected Memory System Architecture (PSMA), 2009.
6. F. F. Brasser, S. Bugiel, A. Filyanov, A.-R. Sadeghi, and S. Schulz. Softer smartcards - usable cryptographic tokens with secure execution. In Financial Cryptography. International Financial Cryptography Association (IFCA), Springer, 2012.
7. S. Bratus, M. E. Locasto, A. Ramaswamy, and S. W. Smith. VM-based security overkill: A lament for applied systems security research. In New Security Paradigms Workshop (NSPW). ACM, 2010.
8. S. Checkoway, D. McCoy, B. Kantor, D. Anderson, H. Shacham, S. Savage, K. Koscher, A. Czeskis, F. Roesner, and T. Kohno. Comprehensive experimental analyses of automotive attack surfaces. In USENIX Security Symposium. USENIX, 2011.
9. A. Cui, M. Costello, and S. J. Stolfo. When firmware modifications attack: A case study of embedded exploitation. In Network and Distributed Systems Security (NDSS). Internet Society, 2013.
10. A. Cui, J. Kataria, and S. J. Stolfo. Killing the myth of Cisco IOS diversity: recent advances in reliable shellcode design. In Workshop On Offensive Technologies (WOOT). USENIX, 2011.
11. K. E. Defrawy, A. Francillon, D. Perito, and G. Tsudik. SMART: Secure and minimal architecture for (establishing a dynamic) root of trust. In Network and Distributed System Security Symposium (NDSS). Internet Society, 2012.
12. J. Dwoskin and R. Lee. Hardware-rooted trust for secure key management and transient trust. In Computer and Communication Security (CCS), 2007.
13. A. Filyanov, J. M. McCune, A.-R. Sadeghi, and M. Winandy. Uni-directional trusted path: Transaction confirmation on just one device. In Dependable Systems and Networks (DSN). IEEE, 2011.
14. J. Franklin, M. Luk, A. Seshadri, and A. Perrig. PRISM: Human-verifieable code execution. Technical report, Carnegie Mellon University, 2007.
15. K. Gandolfi, C. Mourtel, and F. Olivier. Electromagnetic analysis: Concrete results. In Cryptographic Hardware and Embedded Systems (CHES). Springer, 2001.
16. A. Grattafiori and J. Yavor. The outer limits: Hacking the samsung Smart TV. Black Hat Briefings, 2013.
17. D. Grawrock. Dynamics of a Trusted Platform: A Building Block Approach. Intel Press, 2009.
18. D. Halperin, T. Heydt-Benjamin, B. Ransford, S. Clark, B. Defend, W. Morgan, K. Fu, T. Kohno, and W. Maisel. Pacemakers and implantable cardiac defibrillators: Software radio attacks and zero-power defenses. In Research in Security and Privacy (S&P). IEEE, 2008.
19. H. Härtig, M. Hohmuth, N. Feske, C. Helmuth, A. Lackorzynski, F. Mehnert, and M. Peter. The Nizza secure-system architecture. In Collaborative Computing: Networking, Applications and Worksharing. IEEE, 2005.
20. G. Heiser. Critique of microkernel architectures. www.cse.unsw.edu.au/ ~cs9242/04/lectures/lect05b.pdf, 2004.
21. G. Heiser, V. Uhlig, and J. LeVasseur. Are virtual-machine monitors microkernels done right? SIGOPS Oper. Syst. Rev., 40(1):95-99, 2006.
22. Infineon Technologies. XC238xE User's Manual, 2011. v1.0.
23. M. Jakobsson and K.-A. Johansson. Retroactive Detection of MalwareWith Applications to Mobile Platforms. InWorkshop on Hot Topics in Security (HotSec). USENIX, 2010.
24. R. Kennell and L. H. Jamieson. Establishing the genuinity of remote computer systems. In USENIX Security Symposium. USENIX, 2003.
25. G. Klein, K. Elphinstone, G. Heiser, J. Andronick, D. Cock, P. Derrin, D. Elkaduwe, K. Engelhardt, R. Kolanski, M. Norrish, T. Sewell, H. Tuch, and S. Winwood. seL4: Formal verification of an OS kernel. In Symposium on Operating Systems Principles (SOSP). ACM, 2009.
26. P. C. Kocher. Timing attacks on implementations of diffiehellman, rsa, dss, and other systems. In Proceedings of the 16th Annual International Cryptology Conference on Advances in Cryptology. Springer, 1996.
27. P. C. Kocher, J. Jaffe, and B. Jun. Differential power analysis. In Advances in Cryptology - CRYPTO '99. International Association for Cryptologic Research, Springer, 1999.
28. X. Kovah, C. Kallenberg, C. Weathers, A. Herzog, M. Albin, and J. Butterworth. New results for Timing-Based attestation. In Security & Privacy (S&P). IEEE, 2012.
29. Y. Li, J. M. McCune, and A. Perrig. VIPER: verifying the integrity of PERipherals' firmware. In Computer and Communications Security (CCS). ACM, 2011.
30. R. Maes, A. V. Herrewege, and I. Verbauwhede. PUFKY: A fully functional PUF-based cryptographic key generator. In Cryptographic Hardware and Embedded Systems (CHES). Springer, 2012.
31. R. J. Masti, C. Marforio, A. Ranganathan, A. Francillon, and S. Capkun. Enabling trusted scheduling in embedded systems. In ACSAC. ACM, 2012.
32. Matthew Gillespie. Architecture guide: Intel Active Management Technology, 2008.
33. J. M. McCune, Y. Li, N. Qu, Z. Zhou, A. Datta, V. Gligor, and A. Perrig. Trustvisor: Efficient tcb reduction and attestation. In Proceedings of the 2010 IEEE Symposium on Security and Privacy. IEEE Computer Society, 2010.
34. J. M. McCune, B. J. Parno, A. Perrig, M. K. Reiter, and H. Isozaki. Flicker: An execution infrastructure for TCB minimization. In European Conference on Computer Systems (EuroSys). ACM, 2008.
35. F. McKeen, I. Alexandrovich, A. Berenzon, C. V. Rozas, H. Shafi, V. Shanbhogue, and U. R. Savagaonkar. Innovative instructions and software model for isolated execution. In Hardware and Architectural Support for Security and Privacy (HASP). ACM, 2013.
36. D. G. Murray, G. Milos, and S. Hand. Improving Xen security through disaggregation. In SIGPLAN/SIGOPS Virtual Execution Environments (VEE). ACM, 2008.
37. G. Neiger, A. Santoni, F. Leung, D. Rodgers, and R. Uhlig. Intel Virtualization Technology: Hardware support for efficient processor virtualization. Intel Technology Journal, 10(3):167- 177, 2006.
38. J. Noorman, P. Agten, W. Daniels, R. Strackx, A. Van Herrewege, C. Huygens, B. Preneel, I. Verbauwhede, and F. Piessens. Sancus: Low-cost trustworthy extensible networked devices with a zero-software trusted computing base. In USENIX Security Symposium. USENIX, 2013.
39. B. Parno, J. M. McCune, and A. Perrig. Bootstrapping trust in commodity computers. In Proceedings of the 2010 IEEE Symposium on Security and Privacy. IEEE Computer Society, 2010.
40. B. Pfitzmann, J. Riordan, C. Stüble, M. Waidner, and A. Weber. The PERSEUS system architecture. Technical Report RZ 3335 (#93381), IBM Research, 2001.
41. D. R. Piegdon and L. Pimenidis. Targeting physically addressable memory. In Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA). Springer, 2007.
42. J. Rattner. Extreme scale computing. ISCA Keynote, 2012.
43. A.-R. Sadeghi, S. Schulz, and C. Wachsmann. Lightweight remote attestation using physical functions. In Wireless Network Security (WiSec). ACM, 2011.
44. T. S. Saponas, J. Lester, C. Hartung, S. Agarwal, and T. Kohno. Devices that tell on you: privacy trends in consumer ubiquitous computing. In USENIX Security Symposium. USENIX, 2007.
45. A. Seshadri, M. Luk, and A. Perrig. SAKE: Software attestation for key establishment in sensor networks. In Distributed Computing in Sensor Systems. Springer, 2008.
46. R. Strackx, F. Piessens, and B. Preneel. Efficient isolation of trusted subsystems in embedded systems. In Security and Privacy in Communication Networks (SecureComm). Springer, 2010.
47. E. Suh, C. O'Donnell, I. Sachdev, and S. Devadas. Design and implementation of the AEGIS single-chip secure processor using physical random function. In International Symposium on Computer Architecture (ISCA), 2005.
48. Texas Instruments. KeyStone Architecture - Memory Protection Unit (MPU) User Guide, 2013.
49. Trusted Computing Group (TCG). TCG Architecture Overview, 2004.
50. V. van der Veen, N. dutt Sharma, L. Cavallaro, and H. Bos. Memory errors: The past, the present, and the future. In Research in Attacks, Intrusions, and Defenses (RAID). Springer, 2012.
51. J. Viega and H. Thompson. The state of embedded-device security (spoiler alert: It's bad). Security Privacy, IEEE, 10(5):68-70, 2012.
52. K. Wilhoit. The SCADA that didn't cry wolf - who's really attacking your ICS devices - part deux! Black Hat Briefings, 2013.
53. Z. Zhou, V. D. Gligor, J. Newsome, and J. M. McCune. Building verifiable trusted path on commodity x86 computers. In Research in Security and Privacy (S&P). IEEE, 2012.