Affiliation:
1. Ericsson AB and KU Leuven
2. KU Leuven
3. Ericsson AB
4. KU Leuven and Université Libre de Bruxelles
Abstract
This article presents an approach to provide strong assurance of the secure execution of distributed event-driven applications on shared infrastructures, while relying on a small Trusted Computing Base. We build upon and extend security primitives provided by Trusted Execution Environments (TEEs) to guarantee authenticity and integrity properties of applications, and to secure control of input and output devices. More specifically, we guarantee that if an output is produced by the application, it was allowed to be produced by the application’s source code based on an authentic trace of inputs.
We present an integrated open-source framework to develop, deploy, and use such applications across heterogeneous TEEs. Beyond authenticity and integrity, our framework optionally provides confidentiality and a notion of availability, and facilitates software development at a high level of abstraction over the platform-specific TEE layer. We support event-driven programming to develop distributed enclave applications in Rust and C for heterogeneous TEE, including Intel SGX, ARM TrustZone, and Sancus.
In this article we discuss the workings of our approach, the extensions we made to the Sancus processor, and the integration of our development model with commercial TEEs. Our evaluation of security and performance aspects show that TEEs, together with our programming model, form a basis for powerful security architectures for dependable systems in domains such as Industrial Control Systems and the Internet of Things, illustrating our framework’s unique suitability for a broad range of use cases which combine cloud processing, mobile and edge devices, and lightweight sensing and actuation.
Funder
Research Fund KU Leuven
Flemish Research Programme Cybersecurity
SAFETEE project
EU H2020 MSCA-ITN action 5GhOSTS
Research Foundation – Flanders
Publisher
Association for Computing Machinery (ACM)
Subject
Safety, Risk, Reliability and Quality,General Computer Science
Reference80 articles.
1. Martín Abadi. 1999. Protection in programming-language translations. In Secure Internet Programming: Security Issues for Mobile and Distributed Objects. Jan Vitek and Christian D. Jensen (Eds.). Springer, Chapter 2, 19–34.
2. Carmine Abate, Roberto Blanco, Deepak Garg, Catalin Hritcu, Marco Patrignani, and Jérémy Thibault. 2019. Journey beyond full abstraction: Exploring robust property preservation for secure compilation. In Proceedings of the 2019 IEEE 32nd Computer Security Foundations Symposium. IEEE, 256–25615.
3. Fritz Alder, Arseny Kurnikov, Andrew Paverd, and N. Asokan. 2018. Migrating SGX enclaves with persistent state. In Proceedings of the 2018 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks. IEEE, 195–206.
4. Aion: Enabling Open Systems through Strong Availability Guarantees for Enclaves
5. Tiago Alves and Don Felton. 2004. TrustZone: Integrated hardware and software security. Information Quarterly 3 4 (2004) 18–24.
Cited by
2 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献