An Effective Authentication for Client Application Using ARM TrustZone

Jiang, Hang; Chang, Rui; Ren, Lu; Dong, Wei; Jiang, Liehui; Yang, Shuiqiao

doi:10.1007/978-3-319-72359-4_50

Cited by 3 publications

(7 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Cryptographic key protection scheme for mobile devices Encrypting data to pervasive contexts [56] 2017 Communication security between building blocks LTZVisor: TrustZone is the key [57] 2017 Hypervisor architecture to assist virtualization An Effective Authentication for Client Application Using ARM Trust-Zone [58] 2017…”

Section: General Resultsmentioning

confidence: 99%

“…Protection for flow tracking application [59] Trusted framework to develop IoT applications [36] Protection for health data [73] Secure architecture for P2P scenarios [24] Protection for edge computing [63] Comparison between TEE and secure multi-party computation application [62] Protection for video application [46], [69] Secure logger [13], [76] Protection for system analyser [49] Societal model for IoT security [68] Protection for location-based services [60] Trusted auditor [47] Protection for data dissemination [61] Data encryption mechanism [56] Protection for data management [14] Data protection (app) [71] Protection for data aggregation (app) [75] Checker for Industrial gateway communications [52] Lightweithg anonymous authentication [25] Remote attestation mechanism [38] Device snapshot authentication system [32] Control-flow attestation [37] Authentication scheme [58] Remote attestation and channel protection [44] Secure authentication and key distribution [67] Boot attestation [53] Protection for data through authentication [50] Protection and attestation for remote terminal [65] Device private keys protection architecture [28] Remote attestation [64] Keys derivation from device characteristics [31] Authenticity detection service [40] Keys protection against cold boot attacks [55] Cache rootkit exploiting TrustZone [35] vendors, e.g., ARM and Intel, already present many of the general advantages, such as hardware isolation (normal world and the secure world) and mem...…”

Section: Tee Advantages and Disadvantagesmentioning

confidence: 99%

See 1 more Smart Citation

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

et al. 2021

View full text Add to dashboard Cite

Trusted Execution Environments have been applied to improve data security in many distinct application scenarios since they enable data processing in a separate and protected region of memory. To investigate how this technology has been applied to the different IoT scenarios, which commonly deal with specific characteristics such as device resource constraints, we carried out a systematic literature review. For this, we selected and analyzed 58 papers from different conferences and journals, identifying the main IoT solutions and scenarios in which TEE has been employed. We also gathered the mentioned TEE advantages and disadvantages as well as the suggestions for future works. This study gives a general overview of the use of TEEs for cloud/fog-based IoT applications, bringing some challenges and directions.

show abstract

Section: General Resultsmentioning

confidence: 99%

Section: Tee Advantages and Disadvantagesmentioning

confidence: 99%

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

et al. 2021

View full text Add to dashboard Cite

show abstract

“…The non secure OS attaches the process id (pid) of the caller application to each request to the secure world. via code hash [1] via digital signature [2] context management apis what they are? how they work?…”

Section: Existing Solutionsmentioning

confidence: 99%

“…ARM TrustZone technologies aided smartphones to protect security-critical assets from potential breaches in the broader set of functionalities. ARM recently introduced TrustZone for microprocessors, namely TrustZone-M (TZ-M) 1 , intending to protect also IoT devices that are becoming ubiquitous and potentially more dangerous than smartphones if vulnerable to attacks.…”

Section: Introductionmentioning

confidence: 99%

(a draft of) Non-secure Client Awareness in TF-M

Iannillo¹,

Rivera²,

Suciu³

et al. 2021

Preprint

View full text Add to dashboard Cite

show abstract

“…First, the client application (CA) in the REE, which is responsible for calling the measurement modules, initiates the security request. Ten, the processor is switched to the TEE by calling the secure monitor call (SMC) command, and the trusted application (TA) responsible for the measurement work is executed [22,23]. If the API interface in the REE to call TA is broken, the measurement work in the TEE will be interrupted and will not provide security for systems and applications such as the Trojan Dvmap virus [24].…”

Section: Introductionmentioning

confidence: 99%

TZEAMM: An Efficient and Secure Active Measurement Method Based on TrustZone

Liu

Lai

Liu

et al. 2023

Security and Communication Networks

View full text Add to dashboard Cite

With the rapid development of computer and communication technology, embedded systems are widely used in smart devices. The increasing connectivity of these systems and the difficulties in providing comprehensive security have made such devices vulnerable to malicious attacks. Passive defense technologies and traffic-based intrusion detection technologies are not fully effective against such attacks. Trusted execution environment (TEE) technology can ensure system security against unknown attacks to some extent. Most researchers use TrustZone to implement TEE. However, the problem is that the API interface of the TEE module which provides the service is not secure. Therefore, to actively defend against attacks, we developed a trusted computing active measurement architecture based on TrustZone. To overcome the serious problem that modules in the trusted execution environment need to be passively invoked to provide services, we have proposed an active measurement closed-loop immune mechanism. To reduce the trusted computing base and reduce the performance overhead, we removed certain functional modules from the trusted execution environment. In addition, based on this architecture, we developed a trust chain and dynamic measurement method to ensure the security of the target applications. We changed the traditional attack response method, which requires the entire system to be restarted after an attack, by developing a fallback mechanism that is more suitable for the system. Finally, we verified the effectiveness of the architecture by developing an attack model. Performance testing and analysis showed that the architecture reduced the impact of the security mechanisms on the system. In the future, we will extend our research to more fine-grained measurements.

show abstract

An Effective Authentication for Client Application Using ARM TrustZone

Cited by 3 publications

References 6 publications

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

Systematic Literature Review on the Use of Trusted Execution Environments to Protect Cloud/Fog-Based Internet of Things Applications

(a draft of) Non-secure Client Awareness in TF-M

TZEAMM: An Efficient and Secure Active Measurement Method Based on TrustZone

Contact Info

Product

Resources

About