MA-TEECM: Mutual Anonymous Authentication-Based Credential Migration Technology for Mobile Trusted Execution Environments

ARM TrustZone is the most widely used mobile trusted execution environment (TEE) technology today. Its hardware-enabled isolated provides reliable assurance of secure storage credentials in devices. However, research on managing stored TEE throughout lifecycle devices has received little attention recent years, and generally face usability problems caused by device events. Aiming at risk information disclosure third-party service providers traditional credential migration scheme, this paper presents a mutual anonymous authentication-based framework for environments. First, we propose peer-to-peer model between terminals based SGX, which solves single point failure attacks third parties that act as transfer stations managers solutions; Second, an identity authentication protocol TEEs authentication, detailed process designed universal model; Third, build formal verification using High-Level Protocol Specification Language (HLPSL). Finally, informal security analysis indicate improved scheme meets expected requirements against several known attacks.