A Proposal for Security Assessment of Trustzone-M based Software

IANNILLO, Antonio Ken; STATE, Radu

Demander un accès

Communication publiée dans un ouvrage (Colloques, congrès, conférences scientifiques et actes)

A Proposal for Security Assessment of Trustzone-M based Software

IANNILLO, Antonio Ken; STATE, Radu

2019 • In 2019 IEEE 30th International Symposium on Software Reliability Engineering (ISSRE)

Peer reviewed

Permalien
https://hdl.handle.net/10993/40975

Documents (1)Envoyer vers Détails Statistiques Bibliographie Publications similaires

Documents

Texte intégral

Iannillo_ISSRE2019.pdf

Preprint Auteur (93.66 kB)

Demander un accès

Tous les documents dans ORBilu sont protégés par une licence d'utilisation.

Envoyer vers

RIS BibTex APA Chicago Permalink X Linkedin

Détails

Mots-clés :

IoT; Security; Assessment; Trustzone-M

Résumé :

[en] With the advent of the Internet of Things (IoT) paradigm, computing and networking capabilities are extending to devices that are not considered as computers, enabling them to interact with the physical world or other software entities with minimal or no human input. This fast abstract proposes a methodology for the security assessment of software based on TrustZone-M, the ARM hardware security extension for microcontrollers. The methodology consists of the exploitation of a veriﬁcation and validation framework to automatically test TrustZone-M based software.

Disciplines :

Sciences informatiques

Auteur, co-auteur :

IANNILLO, Antonio Ken ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

STATE, Radu ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

Co-auteurs externes :

Langue du document :

Anglais

Titre :

A Proposal for Security Assessment of Trustzone-M based Software

Date de publication/diffusion :

2019

Nom de la manifestation :

2019 IEEE 30th International Symposium on Software Reliability Engineering (ISSRE)

Date de la manifestation :

from 28-10-2019 to 31-10-2019

Titre de l'ouvrage principal :

2019 IEEE 30th International Symposium on Software Reliability Engineering (ISSRE)

Peer reviewed :

Peer reviewed

Focus Area :

Security, Reliability and Trust

Projet européen :

H2020 - 830927 - CONCORDIA - Cyber security cOmpeteNCe fOr Research anD InnovAtion

Organisme subsidiant :

CE - Commission Européenne
European Union

Disponible sur ORBilu :

depuis le 18 novembre 2019

Statistiques

Nombre de vues

211 (dont 17 Unilu)

Nombre de téléchargements

3 (dont 0 Unilu)

Voir plus de statistiques

citations Scopus^®

citations Scopus^®
sans auto-citations

Bibliographie

T. Alves, "Trustzone: Integrated hardware and software security, " White paper, 2004.
A. ARM, "Security technology building a secure system using trustzone technology (white paper), " ARM Limited, 2009.
P. Sparks, "The route to a trillion devices, " White Paper, ARM, 2017.
TrustZone technology for ARMv8-M Atchitecture, ARM, 2017.
A. Machiry, E. Gustafson, C. Spensky, C. Salls, N. Stephens, R. Wang, A. Bianchi, Y. R. Choe, C. Kruegel, and G. Vigna, "BOOMERANG: Exploiting the Semantic Gap in Trusted Execution Environments, " in Proceedings 2017 Network and Distributed System Security Symposium, 2017.
D. Rosenberg, "QSEE TrustZone Kernel Integer Overflow Vulnerability, " Tech. Rep., 2014.
T. Nyman, J.-E. Ekberg, L. Davi, and N. Asokan, "Cfi care: Hardwaresupported call and return enforcement for commercial microcontrollers, " in International Symposium on Research in Attacks, Intrusions, and Defenses. Springer, 2017, pp. 259-284.
N. Asokan, T. Nyman, N. Rattanavipanon, A.-R. Sadeghi, and G. Tsudik, "Assured: Architecture for secure software update of realistic embedded devices, " IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems, vol. 37, no. 11, pp. 2290-2300, 2018.