A trustenclave-based architecture for ensuring run-time security in embedded terminals

“…Framework for development of trusted IoT applications C-FLAT: Control-Flow Attestation for Embedded Systems Software [37] 2016 Attestation for the application execution path without requiring the source code Remote Attestation for Embedded Systems [38] 2016 Implementation of Trusted Platform Module (TPM) with ARM processor CaSE: Cache-Assisted Secure Execution on ARM Processors [39] 2016 Cache-assisted protection against multi-vector attacks and memory disclosure A trust enclave-based architecture for ensuring run-time security in embedded terminals [19] 2017…”

“…Content may change prior to final publication. Protection for legacy applications [8] Access control between trusted and untrusted worlds [23] Protection for embedded devices [33] Hardware isolation architecture [41] Protection for applications execution [34] General-purpose trusted computing platform [27] Protection for real-time OS [43] Trusted OS [29] Protection against data leakage [70] Memory dump mechanism [30] Protection for memory integrity [45] Cache-assisted secure execution [39] Protection for legacy applications [48] Runtime security architecture [19] Protection for services [72] Kernel protection mechanism [51] Protection for SoC communication bus [66] TCB measurements management [42] Trusted I/O [74] Hypervisor [57] Secure device access method [26] Secure mobile device framework [54] TABLE 10. Application solution proposals…”

“…Since TPMs do not allow third parties to run code inside them, TEE was proposed to provide an isolated and protected execution environment for third-parties applications. TEE secure characteristics include isolated code execution and integrity of the runtime code, execution files, and control flow [19]. It maintains the confidentiality of data and code even when under a machine physical control attack.…”

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

“…Framework for development of trusted IoT applications C-FLAT: Control-Flow Attestation for Embedded Systems Software [37] 2016 Attestation for the application execution path without requiring the source code Remote Attestation for Embedded Systems [38] 2016 Implementation of Trusted Platform Module (TPM) with ARM processor CaSE: Cache-Assisted Secure Execution on ARM Processors [39] 2016 Cache-assisted protection against multi-vector attacks and memory disclosure A trust enclave-based architecture for ensuring run-time security in embedded terminals [19] 2017…”

“…Content may change prior to final publication. Protection for legacy applications [8] Access control between trusted and untrusted worlds [23] Protection for embedded devices [33] Hardware isolation architecture [41] Protection for applications execution [34] General-purpose trusted computing platform [27] Protection for real-time OS [43] Trusted OS [29] Protection against data leakage [70] Memory dump mechanism [30] Protection for memory integrity [45] Cache-assisted secure execution [39] Protection for legacy applications [48] Runtime security architecture [19] Protection for services [72] Kernel protection mechanism [51] Protection for SoC communication bus [66] TCB measurements management [42] Trusted I/O [74] Hypervisor [57] Secure device access method [26] Secure mobile device framework [54] TABLE 10. Application solution proposals…”

“…Since TPMs do not allow third parties to run code inside them, TEE was proposed to provide an isolated and protected execution environment for third-parties applications. TEE secure characteristics include isolated code execution and integrity of the runtime code, execution files, and control flow [19]. It maintains the confidentiality of data and code even when under a machine physical control attack.…”

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

“…However, all these are reactive countermeasures and they cannot deal with next‐generation unknown threats. Trusted computing has been proposed to harden cybersecurity defence of embedded terminal for industrial applications [10]. Since only the authorised software can operate, it enforces specific behaviours and protects the system against unauthorised changes and attacks such as malware and root kits.…”

Review on GPS spoofing‐based time synchronisation attack on power system

“…Enclave’s security boundary contains only the CPU and itself. In theory, SGX can be widely used in many ways [ 25 , 26 ]; a significant usage is to prevent the compromised OS from attacking the software.…”

eTPM: A Trusted Cloud Platform Enclave TPM Scheme Based on Intel SGX Technology