{SHELTER}: Extending Arm {CCA} with Isolation in User Space
The increasing adoption of confidential computing is providing individual users with a more
seamless interaction with numerous mobile and server devices. TrustZone is a promising …
seamless interaction with numerous mobile and server devices. TrustZone is a promising …
[HTML][HTML] An edge-computing based Industrial Gateway for Industry 4.0 using ARM TrustZone technology
S Gupta - Journal of Industrial Information Integration, 2023 - Elsevier
Secure and efficient communication to establish a seamless nexus between the five levels of
a typical automation pyramid is paramount to Industry 4.0. Specifically, vertical and …
a typical automation pyramid is paramount to Industry 4.0. Specifically, vertical and …
Evaluating the Security Posture of Real-World FIDO2 Deployments
FIDO2 is a suite of protocols that combines the usability of local authentication (eg,
biometrics) with the security of public-key cryptography to deliver passwordless …
biometrics) with the security of public-key cryptography to deliver passwordless …
CVA6 RISC-V virtualization: Architecture, microarchitecture, and design space exploration
Virtualization is a key technology used in a wide range of applications, from cloud computing
to embedded systems. Over the last few years, mainstream computer architectures were …
to embedded systems. Over the last few years, mainstream computer architectures were …
ADSS: An Available-but-invisible Data Service Scheme for Fine-grained Usage Control
The demand for mobile terminals to participate in data services is increasingly vital. The
General Data Protection Regulation (GDPR) has established several principled …
General Data Protection Regulation (GDPR) has established several principled …
Rethinking system audit architectures for high event coverage and synchronous log availability
Once an attacker compromises the operating system, the integrity and availability of
unprotected system audit logs still kept on the computer becomes uncertain. In this paper …
unprotected system audit logs still kept on the computer becomes uncertain. In this paper …
Building a lightweight trusted execution environment for arm gpus
A wide range of Arm endpoints leverage integrated and discrete GPUs to accelerate
computation. However, Arm GPU security has not been explored by the community. Existing …
computation. However, Arm GPU security has not been explored by the community. Existing …
The HitchHiker's Guide to High-Assurance System Observability Protection with Efficient Permission Switches
Protecting system observability records (logs) from compromised OSs has gained significant
traction in recent times, with several note-worthy approaches proposed. Unfortunately, none …
traction in recent times, with several note-worthy approaches proposed. Unfortunately, none …
Interstellar: Fully Partitioned and Efficient Security Monitoring Hardware Near a Processor Core for Protecting Systems against Attacks on Privileged Software
The existing approaches to instruction trace-based security monitoring hardware are
dependent on the privileged software, which presents a significant challenge in defending …
dependent on the privileged software, which presents a significant challenge in defending …
Aster: Fixing the android tee ecosystem with arm cca
The Android ecosystem relies on either TrustZone (eg, OP-TEE, QTEE, Trusty) or trusted
hypervisors (pKVM, Gunyah) to isolate security-sensitive services from malicious apps and …
hypervisors (pKVM, Gunyah) to isolate security-sensitive services from malicious apps and …