MicroTEE: Designing TEE OS Based on the Microkernel Architecture

Ji, Dongxu; Zhang, Qianying; Zhao, Shengmei; Shi, Zhiping; Guan, Yong

doi:10.1109/trustcom/bigdatase.2019.00014

Cited by 10 publications

(2 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In contrast, the other isolated security world performs a small, trusted and secure operating system, as well as some advanced security management tasks developed by Trusted Application (TA). Within the TEE there can be TrustZonebased operating systems such as Qualcomm's QSEE [3], the open-source OPTEE [4], etc. that provide security services for security-sensitive applications.…”

Section: Introductionmentioning

confidence: 99%

Overview of System-Level Security Technologies based on ARM TrustZone

Deng¹,

Liang²,

Pan³

et al. 2023

FCIS

View full text Add to dashboard Cite

With the rapid development of embedded technology and the increasing complexity of system functionality, there is a growing need for a trusted computing environment to ensure the security, integrity, and reliability of sensitive information. Systems not only need to protect the security of sensitive application code but also ensure the isolation of their execution process to prevent attacks and data theft. Traditional system protection is achieved by using security mechanisms that run in the same address space and privilege level as the kernel. However, this approach is not sufficiently secure as attackers who compromise the kernel can also compromise these security mechanisms. To achieve true kernel and critical data protection, security mechanisms need to be isolated. Therefore, building a trusted isolation runtime environment in the system is crucial for system security. TrustZone technology, developed by ARM, is a system-level security isolation framework capable of defending against various potential attacks. this paper provides an overall overview of different security isolation technologies. By concentrating on the principles and characteristics of ARM TrustZone, the paper conducts an in-depth analysis of system security isolation technology based on TrustZone. Finally, considering the existing security issues in the field of trusted execution environments, the paper presents prospects for the future development of this technology.

show abstract

Section: Introductionmentioning

confidence: 99%

Overview of System-Level Security Technologies based on ARM TrustZone

Deng¹,

Liang²,

Pan³

et al. 2023

FCIS

View full text Add to dashboard Cite

show abstract

“…HyperMI presents virtual machine protection, featuring security against compromised hypervisors by isolating guests in a secure execution environment [14]. MicroTEE designs a TEE on a microkernel software architecture with the necessary services for the application layer [15]. Ladjel et al evaluate the use of TEE-based computing for personal data in a large number of participants [16].…”

Section: Introductionmentioning

confidence: 99%

Quick Boot of Trusted Execution Environment With Hardware Accelerators

et al. 2020

View full text Add to dashboard Cite

The Trusted Execution Environment (TEE) offers a software platform for secure applications. The TEE offers a memory isolation scheme and software authentication from a high privilege mode. The procedure uses different algorithms such as hashes and signatures, to authenticate the application to secure. Although the TEE hardware has been defined for memory isolation, the security algorithms often are executed using software implementations. In this paper, a RISC-V system compatible with TEEs featuring security algorithm accelerators is presented. The hardware accelerators are the SHA-3 hash and the Ed25519 elliptic curve algorithms. TileLink is used for the communications between the processor and the register of the accelerators. For the TEE boot, the software procedures are switched with the accelerated counterpart. Comparing to the software approach, a 2.5-decade increment is observed in the throughput of the signature procedure using the SHA-3 acceleration for big chunks of data. The Ed25519 performs 90% better compared to the software counterpart in execution times.

show abstract

A Sensitive Data Protection Framework Based on TrustZone

Zhao

2022

2022 International Conference on Cloud Computing, Big Data and Internet of Things (3CBIT)

View full text Add to dashboard Cite

MicroTEE: Designing TEE OS Based on the Microkernel Architecture

Cited by 10 publications

References 22 publications

Overview of System-Level Security Technologies based on ARM TrustZone

Overview of System-Level Security Technologies based on ARM TrustZone

Quick Boot of Trusted Execution Environment With Hardware Accelerators

A Sensitive Data Protection Framework Based on TrustZone

Contact Info

Product

Resources

About