Secure boot, trusted boot and remote attestation for ARM TrustZone-based IoT Nodes
نویسندگان
چکیده
With the extensive application of IoT techniques, devices have become ubiquitous in daily lives. Meanwhile, attacks against emerged to compromise by tampering with system pre-installed programs or injecting new malware. To mitigate these attacks, integrity enforcement systems has been proposed. The an device includes load-time and runtime integrity. In this paper, we design based on ARM TrustZone enforce First, establish root trust propose a hybrid booting approach consisting both secure boot trusted Second, investigate paging-based process measurement method measure NW processes conduct remote attestation results ensuring We implement prototype NXP i.MX6Q SABRE SD development board assess its feasibility. Real-world experiment demonstrate that our introduces negligible performance overhead original system.
منابع مشابه
Boot Attestation: Secure Remote Reporting with Off-The-Shelf IoT Sensors
A major challenge in computer security is about establishing the trustworthiness of remote platforms. Remote attestation is the most common approach to this challenge. It allows a remote platform to measure and report its system state in a secure way to a third party. Unfortunately, existing attestation solutions either provide low security, as they rely on unrealistic assumptions, or are not a...
متن کاملAttestation and Secure Code Update for Trusted Sensor Nodes
Compromised sensor nodes and potential insider attacks are a serious threat in wireless sensor networks. at is why implicit attestation protocols have been proposed for detecting compromised sensor nodes in hybrid sensor networks. ese protocols can provide evidence through attestation techniques that the soware of a node is unmodied. However, they are not compatible with code updates, because...
متن کاملBoot Camp for Cognitive Systems
The Defense Advanced Research Projects Agency (DARPA) has implemented a program to build the first instance of a complete cognitive agent. The program, called Personalized Assistant that Learns (PAL), is expected to yield new cognitive technology of significant value not only to the military, but also to the business and academic sectors. (Gunning 2004) With traditional engineering projects, ev...
متن کاملEnabling Trusted Distributed Control with Remote Attestation
In a networked environment where computers are required to collectively work together, it is frequently the case that a single compromised machine can compromise the functionality of the entire system. In such an environment, standard protocols such as password authentication may not provide the security level we desire in that a computer attempting to gain access to the network cannot prove th...
متن کاملUefi Secure Boot in Modern Computer Security Solutions
OVERVIEW What is the UEFI Forum? The Unified Extensible Firmware Interface (UEFI) Forum is a world-class non-profit industry standards body that works in partnership to enable the evolution of platform technologies. The UEFI Forum champions firmware innovation through industry collaboration and the advocacy of a standardized interface that simplifies and secures platform initialization and firm...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Journal of Systems Architecture
سال: 2021
ISSN: ['1383-7621', '1873-6165']
DOI: https://doi.org/10.1016/j.sysarc.2021.102240