Utilize este identificador para referenciar este registo:
https://hdl.handle.net/1822/81555
Registo completo
Campo DC | Valor | Idioma |
---|---|---|
dc.contributor.author | Pereira, Samuel | por |
dc.contributor.author | Sousa, João | por |
dc.contributor.author | Pinto, Sandro | por |
dc.contributor.author | Martins, José Carvalho | por |
dc.contributor.author | Cerdeira, David Martins | por |
dc.date.accessioned | 2023-01-05T14:06:41Z | - |
dc.date.available | 2023-01-05T14:06:41Z | - |
dc.date.issued | 2022-09-12 | - |
dc.identifier.isbn | 9781665491532 | por |
dc.identifier.uri | https://hdl.handle.net/1822/81555 | - |
dc.description.abstract | General-purpose operating systems (GPOS), such as Linux, encompass several million lines of code. Statistically, a larger code base inevitably leads to a higher number of potential vulnerabilities and inherently a more vulnerable system. To minimize the impact of vulnerabilities in GPOS, it has become common to implement security-sensitive programs outside the domain of the GPOS, i.e., in a Trusted Execution Environment (TEE). Arm TrustZone is the de-facto technology for implementing TEEs in Arm devices. However, over the last decade, TEEs have been successfully attacked hundreds of times. Unfortunately, these attacks have been possible due to the presence of several architectural and implementation flaws in TrustZone-based TEEs. In this paper, we propose Bao-Enclave, a virtualization-based solution that enables OEMs to remove security functionality from the TEE and move them into normal world isolated environments, protected from potentially malicious OSes, in the form of lightweight virtual machines (VMs). We evaluate Bao-Enclave on real hardware platforms and find out that Bao-Enclave may improve the performance of security-sensitive workloads by up to 4.8x, while significantly simplifying the TEE software TCB. | por |
dc.description.sponsorship | FCT -Fundação para a Ciência e a Tecnologia(SFRH/BD/138660/2018) | por |
dc.language.iso | eng | por |
dc.relation | info:eu-repo/grantAgreement/FCT/6817 - DCRRNI ID/UIDB%2F00319%2F2020/PT | por |
dc.relation | info:eu-repo/grantAgreement/FCT/POR_NORTE/SFRH%2FBD%2F146231%2F2019/PT | por |
dc.relation | info:eu-repo/grantAgreement/FCT/POR_NORTE/SFRH%2FBD%2F138660%2F2018/PT | por |
dc.rights | openAccess | por |
dc.subject | Virtualization | por |
dc.subject | Trusted execution environment | por |
dc.subject | Bao | por |
dc.subject | Arm | por |
dc.subject | TEEs | por |
dc.title | Bao-Enclave: virtualization-based Enclaves for Arm | por |
dc.type | conferencePaper | por |
dc.peerreviewed | yes | por |
dc.identifier.doi | 10.1109/WF-IoT54382.2022.10152074 | por |
dc.subject.fos | Engenharia e Tecnologia::Engenharia Eletrotécnica, Eletrónica e Informática | por |
sdum.conferencePublication | 2022 IEEE 8th World Forum on Internet of Things, WF-IoT 2022 | por |
dc.subject.ods | Indústria, inovação e infraestruturas | por |
Aparece nas coleções: |
Ficheiros deste registo:
Ficheiro | Descrição | Tamanho | Formato | |
---|---|---|---|---|
2209.05572.pdf | 365,55 kB | Adobe PDF | Ver/Abrir |