Multi-tiered security architecture for ARM via the virtualization and security extensions

Proceedings - International Workshop on Database and Expert Systems Applications, DEXA

Volumn , Issue , 2014, Pages 308-312

  Lengyel, Tamas K ^a   Kittel, Thomas ^a   Pfoh, Jonas ^a   Eckert, Claudia ^a  

^a TECHNICAL UNIVERSITY OF MUNICH   (Germany)

Author keywords

ARM; introspection; mobile; virtualization

Indexed keywords

ANOMALY DETECTION; ARCHITECTURE; COMMERCE; COMPUTER ARCHITECTURE; EXPERT SYSTEMS; VIRTUALIZATION;

ARM ARCHITECTURE; CRITICAL COMPONENT; INTROSPECTION; MOBILE; MOBILE COMPUTING DEVICES; RUN-TIME VERIFICATION; SECURITY ARCHITECTURE; VIRTUAL MACHINE INTROSPECTION;

ARM PROCESSORS;

EID: 84919340836     PISSN: 15294188     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/DEXA.2014.68     Document Type: Conference Paper

References (28)

1. McAfee Deep Defender. http://www.mcafee.com/us/resources/data-sheet/ds-deep-defender.pdf, November 4 2013.
2. ARM. ARM System Memory Management Unit - Architecture Specification, 2012.
3. ARM. Annual report 2013: Strategic report, 2013.
4. A. M. Azab, P. Ning, Z. Wang, X. Jiang, X. Zhang, and N. C. Skalsky. Hypersentry: enabling stealthy in-context measurement of hypervisor integrity. In Proceedings of the 17th ACM conference on Computer and communications security, pages 38-49. ACM, 2010.
5. A. M. Azab, P. Ning, and X. Zhang. Sice: a hardware-level strongly isolated computing environment for x86 multi-core platforms. In Proceedings of the 18th ACM conference on Computer and communications security, pages 375-388. ACM, 2011.
6. S. Bugiel, L. Davi, A. Dmitrienko, S. Heuser, A.-R. Sadeghi, and B. Shastry. Practical and lightweight domain isolation on android. In Proceedings of the 1st ACM workshop on Security and privacy in smartphones and mobile devices, pages 51-62. ACM, 2011.
7. Z. Deng, X. Zhang, and D. Xu. Spider: stealthy binary program instrumentation and debugging via hardware virtualization. In Proceedings of the 29th Annual Computer Security Applications Conference, pages 289-298. ACM, 2013.
8. B. Ding, Y. Wu, Y. He, S. Tian, B. Guan, and G. Wu. Return-oriented programming attack on the xen hypervisor. In Availability, Reliability and Security (ARES), 2012 Seventh International Conference on, pages 479-484. IEEE, 2012.
9. J.-E. Ekberg, N. Asokan, K. Kostiainen, and A. Rantala. Scheduling execution of credentials in constrained secure environments. In Proceedings of the 3rd ACM workshop on Scalable trusted computing, pages 61-70. ACM, 2008.
10. T. Frenzel, A. Lackorzynski, A. Warg, and H. Härtig. Arm trustzone as a virtualization technique in embedded systems. In Proceedings of Twelfth Real-Time Linux Workshop, Nairobi, Kenya, 2010.
11. X. Ge, H. Vijayakumar, and T. Jaeger. Sprobes: Enforcing kernel code integrity on the trustzone architecture. 2014.
12. K. Gudeth, M. Pirretti, K. Hoeper, and R. Buskey. Delivering secure applications on commercial mobile devices: The case for bare metal hypervisors. In Proceedings of the 1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, SPSM '11, pages 33-38, New York, NY, USA, 2011. ACM.
13. C. Hilgers, H. Macht, T. Muller, and M. Spreitzenbarth. Post-mortem memory analysis of cold-booted android devices. In Proceedings of the 8th International Conference on IT Security Incident Management & IT Forensics, SIDAR, Munster, Germany, 2014. German Informatics Society.
14. D. Perez-Botero, J. Szefer, and R. B. Lee. Characterizing hypervisor vulnerabilities in cloud computing servers. In Proceedings of the 2013 international workshop on Security in cloud computing, pages 3-10. ACM, 2013.
15. J. Rutkowska and R. Wojtczuk. Preventing and detecting xen hypervisor subversions. Blackhat Briefings USA, 2008.
16. J. Rutkowska and R. Wojtczuk. Qubes os architecture. Invisible Things Lab, Tech. Rep, 2010.
17. C. Schneider, J. Pfoh, and C. Eckert. A universal semantic bridge for virtual machine introspection. In Information Systems Security, pages 370-373. Springer, 2011.
18. F. Schuster, T. Tendyck, J. Pewny, A. Maaß, M. Steegmanns, M. Contag, and T. Holz. Evaluating the effectiveness of current anti-rop defenses. 2014.
19. R. Spencer, S. Smalley, P. Loscocco, M. Hibler, D. Andersen, and J. Lepreau. The flask security architecture: System support for diverse security policies. In Proceedings of the 8th Conference on USENIX Security Symposium - Volume 8, SSYM'99, pages 11-11, Berkeley, CA, USA, 1999. USENIX Association.
20. P. Varanasi and G. Heiser. Hardware-supported virtualization on arm. In Proceedings of the Second Asia-Pacific Workshop on Systems, page 11. ACM, 2011.
21. A. Vasudevan, J. M. McCune, N. Qu, L. Van Doorn, and A. Perrig. Requirements for an integrity-protected hypervisor on the x86 hardware virtualized architecture. In Trust and Trustworthy Computing, pages 141-165. Springer, 2010.
22. Volatility. The volatility framework: Volatile memory artifact extraction utility framework. https://www.volatilesystems.com/default/volatility, January 2014.
23. J. Wang, A. Stavrou, and A. Ghosh. Hypercheck: A hardware-assisted integrity monitor. In Recent Advances in Intrusion Detection, pages 158-177. Springer, 2010.
24. J. Winter. Trusted computing building blocks for embedded linux-based arm trustzone platforms. In Proceedings of the 3rd ACM workshop on Scalable trusted computing, pages 21-30. ACM, 2008.
25. J. Winter. Experimenting with arm trustzone-or: How i met friendly piece of trusted hardware. In Trust, Security and Privacy in Computing and Communications (TrustCom), 2012 IEEE 11th International Conference on, pages 1161-1166. IEEE, 2012.
26. R. Wojtczuk and J. Rutkowska. Following the white rabbit: Software attacks against intel vt-d technology. Technical report, Invisible Things Lab, 2011.
27. R. Xu, H. Saïdi, and R. Anderson. Aurasium: Practical policy enforcement for android applications. In Proceedings of the 21st USENIX conference on Security symposium, pages 27-27. USENIX Association, 2012.
28. L. K. Yan and H. Yin. Droidscope: seamlessly reconstructing the os and dalvik semantic views for dynamic android malware analysis. In Proceedings of the 21st USENIX Security Symposium, 2012.