SobTrA: a software-based trust anchor for ARM cortex application processors

CODASPY : proceedings of the ... ACM conference on data and application security and privacy. ACM Conference on Data and Application Security & Privacy Pub Date : 2014-03-03 DOI:10.1145/2557547.2557569

Julian Horsch, Sascha Wessel, F. Stumpf, C. Eckert

{"title":"SobTrA: a software-based trust anchor for ARM cortex application processors","authors":"Julian Horsch, Sascha Wessel, F. Stumpf, C. Eckert","doi":"10.1145/2557547.2557569","DOIUrl":null,"url":null,"abstract":"In this paper, we present SobTrA, a Software-based Trust Anchor for ARM Cortex-A processors to protect systems against software-based attacks. SobTrA enables the implementation of a software-based secure boot controlled by a third party independent from the manufacturer. Compared to hardware-based trust anchors, our concept provides some other advantages like being updateable and also usable on legacy hardware. The presented software-based trust anchor involves a trusted third party device, the verifier, locally connected to the untrusted device, e.g., via the microSD card slot of a smartphone. The verifier is verifying the integrity of the untrusted device by making sure that a piece of code is executed untampered on it using a timing-based approach. This code can then act as an anchor for a chain of trust similar to a hardware-based secure boot. Tests on our prototype showed that tampered and untampered execution of SobTrA can be clearly and reliably distinguished.","PeriodicalId":90472,"journal":{"name":"CODASPY : proceedings of the ... ACM conference on data and application security and privacy. ACM Conference on Data and Application Security & Privacy","volume":"138 1","pages":"273-280"},"PeriodicalIF":0.0000,"publicationDate":"2014-03-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"CODASPY : proceedings of the ... ACM conference on data and application security and privacy. ACM Conference on Data and Application Security & Privacy","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2557547.2557569","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

Abstract

In this paper, we present SobTrA, a Software-based Trust Anchor for ARM Cortex-A processors to protect systems against software-based attacks. SobTrA enables the implementation of a software-based secure boot controlled by a third party independent from the manufacturer. Compared to hardware-based trust anchors, our concept provides some other advantages like being updateable and also usable on legacy hardware. The presented software-based trust anchor involves a trusted third party device, the verifier, locally connected to the untrusted device, e.g., via the microSD card slot of a smartphone. The verifier is verifying the integrity of the untrusted device by making sure that a piece of code is executed untampered on it using a timing-based approach. This code can then act as an anchor for a chain of trust similar to a hardware-based secure boot. Tests on our prototype showed that tampered and untampered execution of SobTrA can be clearly and reliably distinguished.

查看原文本刊更多论文

SobTrA: ARM cortex应用处理器基于软件的信任锚

在本文中，我们提出了SobTrA，一个基于软件的信任锚，用于ARM Cortex-A处理器，以保护系统免受基于软件的攻击。SobTrA能够实现由独立于制造商的第三方控制的基于软件的安全启动。与基于硬件的信任锚相比，我们的概念提供了一些其他优势，比如可更新，也可用于遗留硬件。所提出的基于软件的信任锚涉及一个受信任的第三方设备，即验证者，在本地连接到不受信任的设备，例如，通过智能手机的microSD卡插槽。验证者通过使用基于时间的方法确保一段代码在不受信任的设备上未被篡改地执行，从而验证该设备的完整性。然后，此代码可以充当信任链的锚，类似于基于硬件的安全引导。在我们的原型上进行的测试表明，SobTrA的篡改和未篡改执行可以清晰可靠地区分。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

CODASPY : proceedings of the ... ACM conference on data and application security and privacy. ACM Conference on Data and Application Security & Privacy

自引率

0.00%

发文量