SPROBES机制在TrustZone架构上的观察

2019 22nd International Conference on Control Systems and Computer Science (CSCS) Pub Date : 2019-05-01 DOI:10.1109/CSCS.2019.00057

Jan-Alexandru Vaduva, Stefan Dascalu, Iulia-Maria Florea, Iulia Culic, R. Rughinis

{"title":"SPROBES机制在TrustZone架构上的观察","authors":"Jan-Alexandru Vaduva, Stefan Dascalu, Iulia-Maria Florea, Iulia Culic, R. Rughinis","doi":"10.1109/CSCS.2019.00057","DOIUrl":null,"url":null,"abstract":"In this paper we try to reproduce the results described in the paper \"SPROBES: Enforcing Kernel Code Integrity on the TrustZone Architecture\" [1]. The implementation revolves around the idea of protecting the operating system against rootkits with minimum overhead. This is described as an introspection mechanism implemented through TrustZone Secure Monitor Calls (SMC) and handled in secure world. It can instrument any operating system instruction. Since the challenge with this implementation was to avoid being removed by a rootkit, five invariants were enforced and considered to be enough to protect the operating system. This implementation was done on a Linux kernel 2.6.38 and used only 12 such SPROBES. As the original article was written the ARM market is expanding further and further with TrustZone extension now available even on the M series cortex systems. In addition to smartphones as described in previous article, the TrustZone extension is found in a lot of IoT device, such as RaspberryPi and in high-end devices. We try to reimplement the above-mentioned work on a new 4.9 Linux kernel and latest arm-trusted-firmware implementation for a reference ARM 64 hardware in order to identify if it could prove a viable software solution Also we provide feedback and observations for this whole process.","PeriodicalId":352411,"journal":{"name":"2019 22nd International Conference on Control Systems and Computer Science (CSCS)","volume":"130 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Observations over SPROBES Mechanism on the TrustZone Architecture\",\"authors\":\"Jan-Alexandru Vaduva, Stefan Dascalu, Iulia-Maria Florea, Iulia Culic, R. Rughinis\",\"doi\":\"10.1109/CSCS.2019.00057\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper we try to reproduce the results described in the paper \\\"SPROBES: Enforcing Kernel Code Integrity on the TrustZone Architecture\\\" [1]. The implementation revolves around the idea of protecting the operating system against rootkits with minimum overhead. This is described as an introspection mechanism implemented through TrustZone Secure Monitor Calls (SMC) and handled in secure world. It can instrument any operating system instruction. Since the challenge with this implementation was to avoid being removed by a rootkit, five invariants were enforced and considered to be enough to protect the operating system. This implementation was done on a Linux kernel 2.6.38 and used only 12 such SPROBES. As the original article was written the ARM market is expanding further and further with TrustZone extension now available even on the M series cortex systems. In addition to smartphones as described in previous article, the TrustZone extension is found in a lot of IoT device, such as RaspberryPi and in high-end devices. We try to reimplement the above-mentioned work on a new 4.9 Linux kernel and latest arm-trusted-firmware implementation for a reference ARM 64 hardware in order to identify if it could prove a viable software solution Also we provide feedback and observations for this whole process.\",\"PeriodicalId\":352411,\"journal\":{\"name\":\"2019 22nd International Conference on Control Systems and Computer Science (CSCS)\",\"volume\":\"130 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-05-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 22nd International Conference on Control Systems and Computer Science (CSCS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSCS.2019.00057\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 22nd International Conference on Control Systems and Computer Science (CSCS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSCS.2019.00057","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

在本文中，我们试图重现论文“SPROBES:在TrustZone架构上强制内核代码完整性”[1]中描述的结果。该实现围绕着以最小开销保护操作系统免受rootkit攻击的思想。这被描述为通过TrustZone安全监视调用(SMC)实现并在安全环境中处理的自省机制。它可以检测任何操作系统指令。由于此实现的挑战是避免被rootkit删除，因此强制执行了五个不变量，并且被认为足以保护操作系统。这个实现是在Linux内核2.6.38上完成的，并且只使用了12个这样的sprobe。正如最初的文章所写的那样，随着TrustZone扩展现在甚至可以在M系列皮质系统上使用，ARM市场正在进一步扩大。除了上一篇文章中描述的智能手机之外，TrustZone扩展还可以在许多物联网设备中找到，例如RaspberryPi和高端设备。我们尝试在新的4.9 Linux内核和最新的ARM可信固件实现上重新实现上述工作，以确定它是否可以证明是一个可行的软件解决方案。我们还为整个过程提供反馈和观察。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Observations over SPROBES Mechanism on the TrustZone Architecture

In this paper we try to reproduce the results described in the paper "SPROBES: Enforcing Kernel Code Integrity on the TrustZone Architecture" [1]. The implementation revolves around the idea of protecting the operating system against rootkits with minimum overhead. This is described as an introspection mechanism implemented through TrustZone Secure Monitor Calls (SMC) and handled in secure world. It can instrument any operating system instruction. Since the challenge with this implementation was to avoid being removed by a rootkit, five invariants were enforced and considered to be enough to protect the operating system. This implementation was done on a Linux kernel 2.6.38 and used only 12 such SPROBES. As the original article was written the ARM market is expanding further and further with TrustZone extension now available even on the M series cortex systems. In addition to smartphones as described in previous article, the TrustZone extension is found in a lot of IoT device, such as RaspberryPi and in high-end devices. We try to reimplement the above-mentioned work on a new 4.9 Linux kernel and latest arm-trusted-firmware implementation for a reference ARM 64 hardware in order to identify if it could prove a viable software solution Also we provide feedback and observations for this whole process.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2019 22nd International Conference on Control Systems and Computer Science (CSCS)

自引率

0.00%

发文量