Overview of System-Level Security Technologies based on ARM TrustZone
DOI:
https://doi.org/10.54097/fcis.v4i2.10304Keywords:
ARM TrustZone, Safe Isolation, Trusted Execution EnvironmentAbstract
With the rapid development of embedded technology and the increasing complexity of system functionality, there is a growing need for a trusted computing environment to ensure the security, integrity, and reliability of sensitive information. Systems not only need to protect the security of sensitive application code but also ensure the isolation of their execution process to prevent attacks and data theft. Traditional system protection is achieved by using security mechanisms that run in the same address space and privilege level as the kernel. However, this approach is not sufficiently secure as attackers who compromise the kernel can also compromise these security mechanisms. To achieve true kernel and critical data protection, security mechanisms need to be isolated. Therefore, building a trusted isolation runtime environment in the system is crucial for system security. TrustZone technology, developed by ARM, is a system-level security isolation framework capable of defending against various potential attacks. this paper provides an overall overview of different security isolation technologies. By concentrating on the principles and characteristics of ARM TrustZone, the paper conducts an in-depth analysis of system security isolation technology based on TrustZone. Finally, considering the existing security issues in the field of trusted execution environments, the paper presents prospects for the future development of this technology.
Downloads
References
Jang J , Kong S , Kim M ,et al. SeCReT: Secure Channel between Rich Execution Environment and Trusted Execution Environment[C]//Network & Distributed System Security Symposium.2015.
Demigha O , Larguet R .Hardware-based solutions for trusted cloud computing – Science Direct[J].Computers & Security, 103[2023-07-13].
Ji D , Zhang Q , Zhao S ,et al.MicroTEE: Designing TEE OS Based on the Microkernel Architecture[J].IEEE, 2019.
Fabien M .The Bureau of Reclamation and Practical Applications in Desalination and Membrane Separation Technologies [J]. 2000.
Ravi S , Raghunathan A , Kocher P C ,et al.Security in Embedded Systems: Design Challenges[J].ACM Transactions on Embedded Computing Systems, 2004, 3(3):461-491.
Moghimi D , Sunar B , Eisenbarth T ,et al.TPM-FAIL: TPM meets Timing and Lattice Attacks[J]. 2019.
Yang X , Shi P , Tian B ,et al.Trust-E: A Trusted Embedded Operating System Based on the ARM Trustzone[C]//IEEE International Conference on Autonomic and Trusted Computing; IEEE International Conference on Ubiquitous Intelligence and Computing; IEEE International Conference on Scalable Computing and Communications and Associated Symposia/Workshops.0[2023-07-13].
Shepherd C , Arfaoui G , Gurulian I ,et al. Secure and Trusted Execution: Past, Present and Future -- A Critical Review in the Context of the Internet of Things and Cyber-Physical Systems[C]//Trustcom/bigdatase/ispa.IEEE, 2017.
Jinwen W , Yong J , Qi L I ,et al.Survey of Research on SGX Technology Application[J].Journal of Network New Media, 2017.
Benhani E M , Marchand C , Aubert A ,et al.On the security evaluation of the ARM TrustZone extension in a heterogeneous SoC [C]//2017 30th IEEE International System-on-Chip Conference (SOCC).IEEE, 2017.
Johnson W , Eizirik E , Pecon-Slattery J ,et al.The late Miocene radiation of modern Felidae: a genetic assessment.[J].Science (New York, N.Y.), 2006, 311(5757):73.
Winter J .Trusted computing building blocks for embedded linux-based ARM trustzone platforms[C]//Acm Workshop on Scalable Trusted Computing.ACM, 2008.
Sarker A K , Islam M K , Tian Y .MVAM: Multi-variant Attacks on Memory for IoT Trust Computing[J]. 2023.
Huang Q X , Chiu M Y , Yeh C S ,et al.STBEAT: Software Update on Trusted Environment Based on ARM TrustZone [J]. Sustainability, 2022, 14.
Downloads
Published
Issue
Section
How to Cite
