SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM

•

7 likes•4,686 views

SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM Speakers: Zoltan Kuscsik Date: September 22, 2015 ★ Session Description ★ This presentation gives an overview of how various components of set-top software are integrated to provide a W3C EME solution employing a commercial DRM integrated with an open source TEE running on ARM TrustZone. ★ Resources ★ Video: https://www.youtube.com/watch?v=defbtpsw6h8 Presentation: http://www.slideshare.net/linaroorg/sfo15205-optee-content-decryption-with-microsoft-playready-on-arm-53111683 Etherpad: pad.linaro.org/p/sfo15-205 Pathable: https://sfo15.pathable.com/meetings/302837 ★ Event Details ★ Linaro Connect San Francisco 2015 - #SFO15 September 21-25, 2015 Hyatt Regency Hotel http://www.linaro.org http://connect.linaro.org

Technology

Presented by
Date
Event
SFO15-205: OP-TEE Content
Decryption with Microsoft
PlayReady on ARM
TrustZone
Zoltan Kuscsik, PhD
Tuesday 22 September 2015
SFO15

Introduction
Open source Linux project utilizing ARM TrustZone(R) for developing trusted applications.
The project is maintained by Linaro and STMicroelectronics. OP TEE is compliant with the Global
Platforms API specifications.
OP TEE OS:
https://github.com/OP-TEE/optee_os
OP TEE Client:
https://github.com/OP-TEE/optee_client
OP TEE Linux driver:
https://github.com/OP-TEE/optee_linuxdriver
Open CDM:
https://github.com/fraunhoferfokus/open-content-decryption-module

Linux
TrustZone / OP TEE OS
OP TEE Client
What is OP TEE?
Linux Native App
Global Platform TEE
API
TEE Supplicant
OP TEE Linux Driver Storage
OP TEE OS
Trusted App (DRM)
TEE Core HAL
Secure
Monitor
OP TEE Hello World:
https://github.com/jenswi-linaro/lcu14_optee_hello_world

Supported HW and Emulators
Architectures: ARMv7, ARMv8
Foundation FVP
ARMs Juno Board
QEMU
STMicroelectronics b2120 - h310 / h410
STMicroelectronics b2020-h416
Allwinner A80 Board
HiKey Board (HiSilicon Kirin 620)
MediaTek MT8173 EVB Board

Encrypted Media Extensions
W3C draft for playback protected
content using the HTMLMediaElement.
The standard doesn’t specify the DRM
subsystem itself but provides a API to
interface/select a DRM subsystem.
Supported by almost all browsers using
various DRM platforms: Widewine,
Adobe DRM, PlayReady

CDM portability and interoperability?
● Support for internal and external CDM
implementations.
● Chromium code is closely following the EME standard,
however, the standard is still in draft.

Open CDM Browser
OCDM
CDMI Service
cdmi.h
Interface for various key systems.
mock.drm ClearKey/OpenSSL
CDM
PlayReady CDMI
RPC
ClearKey
OP TEE

CDM implementations
Chromium External
Clear Key
Linaro Clear Key
CDM with SSL
Linaro Clear Key
CDM with OPTEE
Linaro CDM
PPAPI CDM Yes Yes Yes Yes
OpenCDM No Yes Yes Yes
OP TEE and
TrustZone®
No No Yes Yes
PlayReady, other
DRM support
No No No Yes
Compatibility ARMv7, ARMv8, x86 ARMv7, ARMv8,
x86
ARMv7, ARMv8 ARMv7, ARMv8

OpenSSL ClearKey CDM
● Works both on X86 and ARM Linux.
● Allows the testing and exercising the Open CDM implementation:
https://github.com/linaro-home/open-content-decryption-module-cdmi
● Upstreamed to OpenCDM project

OP TEE - CDM
● Used as a baseline for integrating OP TEE with commercial
DRMs.
● Decrypting and playback of protected webm/mp4 videos in
Chromium.
● Support for MS PlayReady on ARM Linux.
● Support for STM B2120, Allwinner and 96boards.

Secure data path
Returning clear buffers to Linux space? Not very secure.
Secure RAMNon-secure RAM
Encrypted
buffers
Trusted App
(DRM)
Decrypted
Buffers
Decoded
buffers
Browser EME
CDM Player
DMABuf
reference
Decoder HW
Display

What's hot

LCU14-103: How to create and run Trusted Applications on OP-TEE

Linaro

SFO15-503: Secure storage in OP-TEE Speaker: James Kung, Sheng-Yu Chiu Date: September 25, 2015 ★ Session Description ★ Linaro has been refining the secure storage solution in OP-TEE and in this session the audience will get an update about the current status and also will get to know about the implementation details, design decisions and what algorithms that has been used. ★ Resources ★ Video: https://www.youtube.com/watch?v=pChEdObYLRM Presentation: http://www.slideshare.net/linaroorg/sfo15503-secure-storage-in-optee Etherpad: pad.linaro.org/p/sfo15-503 Pathable: https://sfo15.pathable.com/meetings/303094 ★ Event Details ★ Linaro Connect San Francisco 2015 - #SFO15 September 21-25, 2015 Hyatt Regency Hotel http://www.linaro.org http://connect.linaro.org

SFO15-503: Secure storage in OP-TEE

Linaro

Lcu14 306 - OP-TEE Future Enhancements

Linaro

SFO15-200: Linux kernel generic TEE driver Speaker: Jens Wiklander Date: September 22, 2015 ★ Session Description ★ At this session we will get more knowledge about the TEE driver that Linaro has been working on for the last couple of months. Questions to be answered are for example: What are the API’s? How does the TEE driver work as a communication channel. What will a developer need to think of when adding support for another TEE solution? ★ Resources ★ Video: https://www.youtube.com/watch?v=BhLndLUQamM Presentation: http://www.slideshare.net/linaroorg/sfo15200-linux-kernel-generic-tee-driver Etherpad: pad.linaro.org/p/sfo15-200 Pathable: https://sfo15.pathable.com/meetings/302831 ★ Event Details ★ Linaro Connect San Francisco 2015 - #SFO15 September 21-25, 2015 Hyatt Regency Hotel http://www.linaro.org http://connect.linaro.org

SFO15-200: Linux kernel generic TEE driver

Linaro

LCA14: LCA14-502: The way to a generic TrustZone® solution

Linaro

LAS16 111 - Raspberry pi3, op-tee and jtag debugging

96Boards

TEE security infrastructure is now upstream in the Linux kernel, thanks to the hard work of many people in the ARM open source ecosystem. In this upcoming webinar, Joakim Bech and Jens Wiklander of the Linaro Security Working Group explain: ‣ Why upstream Linux kernel driver support is an important milestone. ‣ The relationship with specifications such as GlobalPlatform. ‣ A recap of the design principles for the TEE driver. ‣ How to get involved with TEE development. This webinar is based on the work of the Linaro Security Working Group. Their work helps Linaro achieve its mission of providing upstream open source support for the ARM ecosystem. The webinar will be of interest to developers and engineering managers who would like the latest status on TEE support in Linux, particularly those looking to develop secure applications with e.g. OP-TEE. It’s also a great case study for those interested in the challenges of Linux kernel upstreaming. There will be the opportunity to ask questions before, during and after the webinar. 🎙 Speakers: Joakim Bech, Security Working Group Tech Lead, Linaro Jens Wiklander, Security Working Group Engineer & Upstream Driver Author, Linaro 🎯 Moderator: Bill Fletcher, EMEA Field Engineering, Linaro ✨ Register here http://linaro.co/webinar01 For more information on... On Linaro - Leading Collaboration in the ARM Ecosystem - linaro.org On OP-TEE - the TEE in Linux using the ARM® TrustZone® technology op-tee.org ---------------------------------------------- Videos & Presentation -- Introduction to OP-TEE -- A great introduction to OP-TEE security written from the standpoint of Automotive Grade Linux. It's only 13 slides with some great diagrams explaining trusted execution, secure boot and isolation. #Automotive #AGL #OP-TEE #Linux https://www.slideshare.net/YannickGicquel/introduction-to-optee-26-may-2016 -- OP-TEE for Beginners and Porting Review -- Explains the building blocks involved in Security including TrustZone, OP-TEE, Trusted Firmware etc. Goes into detail on how Secure Boot Works.. and Why. Explains how a simple secure Trusted Application interacts with OP-TEE and works. Brief overview on how to port OP-TEE to an ARM platform. Opens discussions for Potential Challenges and Hardware limitations and how they can be overcome. #TrustedApplication #Trustzone http://connect.linaro.org/resource/hkg15/hkg15-311-op-tee-for-beginners-and-porting-review/

TEE - kernel support is now upstream. What this means for open source security

Linaro

LCA14: LCA14-418: Testing a secure framework

Linaro

OPTEE on QEMU - Build Tutorial

Dalton Valadares

HKG18-113- Secure Data Path work with i.MX8M

Linaro

BUD17-400: Secure Data Path with OPTEE

Linaro

LAS16-504: Secure Storage updates in OP-TEE Speakers: Jerome Forissier Date: September 30, 2016 ★ Session Description ★ Since the presentation back in 2015 (SFO15), there has been functionality added, like RPMB and there has also been some changes in general to the secure storage code. This presentation will summarize what has been happening and will also talk about what’s left to do. ★ Resources ★ Etherpad: pad.linaro.org/p/las16-504 Presentations & Videos: http://connect.linaro.org/resource/las16/las16-504/ ★ Event Details ★ Linaro Connect Las Vegas 2016 – #LAS16 September 26-30, 2016 http://www.linaro.org http://connect.linaro.org

LAS16-504: Secure Storage updates in OP-TEE

Linaro

HKG18-203 - Overview of Linaro DRM

Linaro

LCU13: An Introduction to ARM Trusted Firmware

Linaro

LCU14 500 ARM Trusted Firmware

Linaro

Secure Boot on ARM systems – Building a complete Chain of Trust upon existing...

Linaro

RISC-V-Day-Tokyo2018-suzaki

Kuniyasu Suzaki

LAS16-111: Raspberry Pi3, OP-TEE and JTAG debugging Speakers: Date: September 26, 2016 ★ Session Description ★ ARM TrustZone is a critical technology for securing IoT devices and systems. But awareness of TrustZone and its benefits lags within the maker community as well as among enterprises. The first step to solving this problem is lowering the cost of access. Sequitur Labs and Linaro have joined forces to address this problem by making a port of OP-TEE available on the Raspberry Pi 3. The presentation covers the value of TrustZone for securing IoT and how customers can learn more through this joint effort. Embedded systems security remains a challenge for many developers. Awareness of mature, proven technologies such as ARM TrustZone is very low among the Maker community as well as among enterprises. As a result this foundational technology is largely being ignored as a security solution. Sequitur Labs and Linaro have taken an innovative approach combining an Open Source solution – OP-TEE with Raspberry Pi 3. The Raspberry Pi 3 is one of the world’s most popular platforms among device makers. Its value as an educational tool for learning about embedded systems development is proven. Sequitur Labs have also enabled bare metal debugging via JTag on the Pi 3 enhancing the value of the Pi 3 as an educational tool for embedded systems development. The presentation will focus on ARM v8a architecture and instruction set ARM Trusted Firmware TrustZone and OP-TEE basics JTAG and bare metal debugging the Raspberry Pi 3 ★ Resources ★ Etherpad: pad.linaro.org/p/las16-111 Presentations & Videos: http://connect.linaro.org/resource/las16/las16-111/ ★ Event Details ★ Linaro Connect Las Vegas 2016 – #LAS16 September 26-30, 2016 http://www.linaro.org http://connect.linaro.org

LAS16-111: Easing Access to ARM TrustZone – OP-TEE and Raspberry Pi 3

Linaro

SFO15-TR9: PSCI, ACPI (and UEFI to boot) Speaker: Bill Fletcher Date: September 24, 2015 ★ Session Description ★ An introductory session of a system-level overview at Power State Coordination - Focus on ARMv8 - Goes top-down from ACPI - A demo based on the current code in qemu - The specifications are very dynamic - what’s onging for ACPI and PSCI ★ Resources ★ Video: https://www.youtube.com/watch?v=vXzPdpaZVto Presentation: http://www.slideshare.net/linaroorg/sfo15tr9-psci-acpi-and-uefi-to-boot Etherpad: pad.linaro.org/p/sfo15-tr9 Pathable: https://sfo15.pathable.com/meetings/303087 ★ Event Details ★ Linaro Connect San Francisco 2015 - #SFO15 September 21-25, 2015 Hyatt Regency Hotel http://www.linaro.org http://connect.linaro.org

SFO15-TR9: PSCI, ACPI (and UEFI to boot)

Linaro

Trusted firmware deep_dive_v1.0_

Linaro

What's hot (20)

LCU14-103: How to create and run Trusted Applications on OP-TEE

SFO15-503: Secure storage in OP-TEE

Lcu14 306 - OP-TEE Future Enhancements

SFO15-200: Linux kernel generic TEE driver

LCA14: LCA14-502: The way to a generic TrustZone® solution

LAS16 111 - Raspberry pi3, op-tee and jtag debugging

TEE - kernel support is now upstream. What this means for open source security

LCA14: LCA14-418: Testing a secure framework

OPTEE on QEMU - Build Tutorial

HKG18-113- Secure Data Path work with i.MX8M

BUD17-400: Secure Data Path with OPTEE

LAS16-504: Secure Storage updates in OP-TEE

HKG18-203 - Overview of Linaro DRM

LCU13: An Introduction to ARM Trusted Firmware

LCU14 500 ARM Trusted Firmware

Secure Boot on ARM systems – Building a complete Chain of Trust upon existing...

RISC-V-Day-Tokyo2018-suzaki

LAS16-111: Easing Access to ARM TrustZone – OP-TEE and Raspberry Pi 3

SFO15-TR9: PSCI, ACPI (and UEFI to boot)

Trusted firmware deep_dive_v1.0_

Similar to SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM

HKG18-217 - OpenCDM/CDMi (Multi DRM) work with WPE & Chromium

Linaro

For the full video of this presentation, please visit: https://www.edge-ai-vision.com/2021/01/khronos-standard-apis-for-accelerating-vision-and-inferencing-a-presentation-from-the-khronos-group/ Neil Trevett, President of the Khronos Group and Vice President of Developer Ecosystems at NVIDIA, presents the “Khronos Standard APIs for Accelerating Vision and Inferencing” tutorial at the September 2020 Embedded Vision Summit. The landscape of processors and tools for accelerating inferencing and vision applications continues to evolve rapidly. Khronos standards, such as OpenCL, OpenVX, SYCL and NNEF, play an increasingly central role in connecting application developers to the latest silicon—productively, efficiently and portably. In this talk, Trevett provides an overview and the latest updates on Khronos standards relevant for machine learning and computer vision, and previews how they are likely to evolve in the future.

“Khronos Standard APIs for Accelerating Vision and Inferencing,” a Presentati...

Edge AI and Vision Alliance

Technology And Life

Sunil Swain

Technology And Life

Sunil Swain

EclipseOMRBuildingBlocks4Polyglot_TURBO18

Xiaoli Liang

OpenShift 4 installation

Robert Bohne

Extending Android's Platform Toolsuite

Opersys inc.

OpenShift_Installation_Deep_Dive_Robert_Bohne.pdf

ssuser9e06a61

Working on standards can be slow and tedious but there are also rewards: interoperability, open source implementations and high-quality specifications. Based on two examples of ongoing standardization efforts that aim to improve IoT security in the Internet Engineering Task Force (IETF), namely "Authentication and Authorization for Constrained Environments" (ACE) and "Software Updates for Internet of Things" (SUIT), Hannes explains the process and how to get involved.

The Role of Standards in IoT Security

Hannes Tschofenig

Faites communiquer vos objets connectés avec la solution RIOT ! RIOT est un nano système d'exploitation open source, l’équivalent de Linux, pour l’internet des objets. Grâce aux standards de communication qu'il implémente, il vous permettra de développer facilement et de façon pérenne et sécurisée vos applications pour vos objets communicants et embarqués (agriculture connectée, suivi et gestion de bâtiments intelligents, petits automatismes, usine du futur ...). Inria, l'institut national de recherche dédié au numérique, qui à French Tech Central connecte les entrepreneurs au meilleur de la recherche publique française, est un des membres co-fondateurs de la communauté mondiale des développeurs RIOT.

Inria Tech Talk : RIOT, l'OS libre pour vos objets connectés #IoT

Stéphanie Roger

Web Technologies in Automotive & Robotics (BlinkOn 10)

Igalia

ERTS 2008 - Using Linux for industrial projects

Christian Charreyre

Learn how Embarcadero’s newly released free Python modules bring the power and flexibility of Delphi’s GUI frameworks to Python. VCL and FireMonkey (FMX) are mature GUI libraries. VCL is focused on native Windows development, while FireMonkey brings a powerful flexible GUI framework to Windows, Linux, macOS, and even Android. This webinar will introduce you to these new free Python modules and how you can use them to build graphical users interfaces with Python. Part 2 will show you how to target Android GUI applications with Python!

Introduction to Python GUI development with Delphi for Python - Part 1: Del...

Embarcadero Technologies

Organizations can pick between numerous free community-supported distributions of the Linux operating system. In the data center and on AWS, Azure, GKE, CloudFlare, DigitalOcean, and other public clouds, these free versions are available as part of the default configuration. Why, then, would you pay for Linux? These slides, based on a webinar hosted by Red Hat and leading IT research firm EMA, provide insights into what has and has not worked related to the adoption of free versus subscription-based Linux distributions.

Why Pay for Open Source Linux? Avoid the Hidden Cost of DIY

Enterprise Management Associates

Trustzone secure os tee for mips

Sierraware

Object RTC (ORTC) is a free, open project that enables mobile endpoints to talk to servers and web browsers with Real-Time Communications (RTC) capabilities via native and simple Javascript APIs. The Object RTC components are being optimized to best serve this purpose. Our mission: To enable rich, high quality, RTC applications to be developed in mobile endpoints and servers via native toolkits, simple Javascript APIs and HTML5. It is also a mandate that Object RTC be compatible with WebRTC. The Object RTC initiative is a project supported by Hookflash, Microsoft, Google and others. This page is maintained by the Hookflash team. The ORTC C++ Library is a project sponsored by Hookflash. To sponsor ORTC Lib projects send an email to sponsor@ortc.org

ORTC Library - Introduction

Erik Lagerway

AWS Summit Singapore 2019 | Latest Trends for Cloud-Native Application Develo...

AWS Summits

OpenNTF Webinar 05/07/13: OpenNTF - The IBM Collaboration Solutions App Dev C...

Niklas Heidloff

Is Android the New King of Embedded OSes at Embedded World 2014

Opersys inc.

Android

Nishant Jain

Similar to SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM (20)

HKG18-217 - OpenCDM/CDMi (Multi DRM) work with WPE & Chromium

“Khronos Standard APIs for Accelerating Vision and Inferencing,” a Presentati...

Technology And Life

EclipseOMRBuildingBlocks4Polyglot_TURBO18

OpenShift 4 installation

Extending Android's Platform Toolsuite

OpenShift_Installation_Deep_Dive_Robert_Bohne.pdf

The Role of Standards in IoT Security

Inria Tech Talk : RIOT, l'OS libre pour vos objets connectés #IoT

Web Technologies in Automotive & Robotics (BlinkOn 10)

ERTS 2008 - Using Linux for industrial projects

Introduction to Python GUI development with Delphi for Python - Part 1: Del...

Why Pay for Open Source Linux? Avoid the Hidden Cost of DIY

Trustzone secure os tee for mips

ORTC Library - Introduction

AWS Summit Singapore 2019 | Latest Trends for Cloud-Native Application Develo...

OpenNTF Webinar 05/07/13: OpenNTF - The IBM Collaboration Solutions App Dev C...

Is Android the New King of Embedded OSes at Embedded World 2014

Android

More from Linaro

Short The growing amount of data captured by sensors and the real time constraints imply that not only big data analytics but also Machine Learning (ML) inference shall be executed at the edge. The multiple options for neural network acceleration in Arm-based platforms provide an unprecedented opportunity for new intelligent devices. It also raises the risk of fragmentation and duplication of efforts when multiple frameworks shall support multiple accelerators. Andrea Gallo, Linaro VP of Segment Groups, will summarise the existing NN frameworks, accelerator solutions, and will describe the efforts underway in the Arm ecosystem. Abstract The dramatically growing amount of data captured by sensors and the ever more stringent requirements for latency and real time constraints are paving the way for edge computing, and this implies that not only big data analytics but also Machine Learning (ML) inference shall be executed at the edge. The multiple options for neural network acceleration in recent Arm-based platforms provides an unprecedented opportunity for new intelligent devices with ML inference. It also raises the risk of fragmentation and duplication of efforts when multiple frameworks shall support multiple accelerators. Andrea Gallo, Linaro VP of Segment Groups, will summarise the existing NN frameworks, model description formats, accelerator solutions, low cost development boards and will describe the efforts underway to identify the best technologies to improve the consolidation and enable the competitive innovative advantage from all vendors. Audience The session will be useful for executives to engineers. Executives will gain a deeper understanding of the issues and opportunities. Engineers at NN acceleration IP design houses will take away ideas for how to collaborate in the open source community on their area of expertise, how to evaluate the performance and accelerate multiple NN frameworks without modifying them for each new IP, whether it be targeting edge computing gateways, smart devices or simple microcontrollers. Benefits to the Ecosystem The AI deep learning neural network ecosystem is starting just now and it has similar implications with open source as GPU and video accelerators had in the early days with user space drivers, binary blobs, proprietary APIs and all possible ways to protect their IPs. The session will outline a proposal for a collaborative ecosystem effort to create a common framework to manage multiple NN accelerators while at the same time avoiding to modify deep learning frameworks with multiple forks.

Deep Learning Neural Network Acceleration at the Edge - Andrea Gallo

Linaro

Arm Architecture HPC Workshop Santa Clara 2018 - Kanta Vekaria

Linaro

Talk Title: Huawei’s requirements for the ARM based HPC solution readiness Talk Abstract: A high level review of a wide range of requirements to architect an ARM based competitive HPC solution is provided. The review combines both Industry and Huawei’s unique views with the intend to communicate openly not only the alignment and support in ongoing efforts carried over by other ARM key players but to brief on the areas of differentiation that Huawei is investing towards the research, development and deployment of homegrown ARM based HPC solution(s). Speaker: Joshua Mora Speaker Bio: 20 years of experience in research and development of both software and hardware for high performance computing. Currently leading the architecture definition and development of ARM based HPC solutions, both hardware and software, all the way to the applications (ie. turnkey HPC solutions for different compute intensive markets where ARM will succeed !!).

Huawei’s requirements for the ARM based HPC solution readiness - Joshua Mora

Linaro

“Delivering a well working distribution is hard. There are a lot of different hardware platforms that need to be verified and the software stack is in a big flux during development phases. In rolling releases, this gets even worse, as nothing ever stands still. The only sane answer to that problem are working Continuous Integration tests. The SUSE way to check whether any change breaks normal distribution behavior is OpenQA. Using OpenQA we can automatically run tests that hard working QA people did manually in the old days. That way we have fast enough turnaround times to find and reject breaking changes This session shows how OpenQA works, what pitfalls we had to make ARM work with OpenQA and what we’re doing to improve it for ARM specific use cases.”

Bud17 113: distribution ci using qemu and open qa

Linaro

Speaker: Renato Golin Speaker Bio: He started programming in the late 80's in C for PCs after a few years playing with 8-bit computers, but he only started programming professionally in the late 90's during the .com bubble. After many years working on Internet's back-end, he moved to UK and worked a few years on bioinformatics at EBI before joining ARM, where he worked on the DS-5 debugger and on the EDG-to-LLVM bridge, where he became the LLVM Tech Lead. Recently, he worked with large clusters and big data at HPCC before moving to Linaro. Talk Title: OpenHPC Automation with Ansible Talk Abstract: "In order to test OpenHPC packages and components and to use it as a platform to benchmark HPC applications, Linaro is developing an automated deployment strategy, using Ansible, Mr-Provisioner and Jenkins, to install the OS, OpenHPC and prepare the environment on varied architectures (Arm, x86). This work is meant to replace the existing ageing Bash-based recipes upstream while still keeping the documents intact. Our aim is to make it easier to vary hardware configuration, allow for different provisioning techniques and mix internal infrastructure logic to different labs, while still using the same recipes. We hope this will help more people use OpenHPC with a better out-of-the-box experience and with more robust results"

OpenHPC Automation with Ansible - Renato Golin - Linaro Arm HPC Workshop 2018

Linaro

Speaker: Pavel Shamis Company: Arm Speaker Bio: "Pavel is a Principal Research Engineer at ARM with over 16 years of experience in development HPC solutions. His work is focused on co-design software and hardware building blocks for high-performance interconnect technologies, development communication middleware and novel programming models. Prior to joining ARM, he spent five years at Oak Ridge National Laboratory (ORNL) as a research scientist at Computer Science and Math Division (CSMD). In this role, Pavel was responsible for research and development multiple projects in high-performance communication domain including: Collective Communication Offload (CORE-Direct & Cheetah), OpenSHMEM, and OpenUCX. Before joining ORNL, Pavel spent ten years at Mellanox Technologies, where he led Mellanox HPC team and was one of the key driver in enablement Mellanox HPC software stack, including OFA software stack, OpenMPI, MVAPICH, OpenSHMEM, and other. Pavel is a recipient of prestigious R&D100 award for his contribution in development of the CORE-Direct collective offload technology and he published in excess of 20 research papers. " Talk Title: HPC network stack on ARM Talk Abstract: Applications, programming languages, and libraries that leverage sophisticated network hardware capabilities have a natural advantage when used in today¹s and tomorrow's high-performance and data center computer environments. Modern RDMA based network interconnects provides incredibly rich functionality (RDMA, Atomics, OS-bypass, etc.) that enable low-latency and high-bandwidth communication services. The functionality is supported by a variety of interconnect technologies such as InfiniBand, RoCE, iWARP, Intel OPA, Cray¹s Aries/Gemini, and others. Over the last decade, the HPC community has developed variety user/kernel level protocols and libraries that enable a variety of high-performance applications over RDMA interconnects including MPI, SHMEM, UPC, etc. With the emerging availability HPC solutions based on ARM CPU architecture it is important to understand how ARM integrates with the RDMA hardware and HPC network software stack. In this talk, we will overview ARM architecture and system software stack, including MPI runtimes, OpenSHMEM, and OpenUCX.

HPC network stack on ARM - Linaro HPC Workshop 2018

Linaro

Speaker: Jay Kruemcke Speaker Company: SUSE Bio: "Jay is responsible for the SUSE Linux server products for High Performance Computing, 64-bit ARM systems, and SUSE Linux for IBM Power servers. Jay has built an extensive career in product management including using social media for client collaboration, product positioning, driving future product directions, and evangelizing the capabilities and future directions for dozens of enterprise products. " Talk Title: It just keeps getting better - SUSE enablement for Arm Talk Abstract: SUSE has been delivering commercial Linux support for Arm based servers since 2016. Initially the focus was on high end servers for HPC and Ceph based software defined storage. But we have enabled a number of other Arm SoCs and are even supporting the Raspberry Pi. This session will cover the SUSE products that are available for the Arm platform and view to the future.

It just keeps getting better - SUSE enablement for Arm - Linaro HPC Workshop ...

Linaro

Speakers: Gilad Shainer and Scot Schultz Company: Mellanox Technologies Talk Title: Intelligent Interconnect Architecture to Enable Next Generation HPC Talk Abstract: The latest revolution in HPC interconnect architecture is the development of In-Network Computing, a technology that enables handling and accelerating application workloads at the network level. By placing data-related algorithms on an intelligent network, we can overcome the new performance bottlenecks and improve the data center and applications performance. The combination of In-Network Computing and ARM based processors offer a rich set of capabilities and opportunities to build the next generation of HPC platforms. Gilad Shainer Bio: Gilad Shainer has served as Mellanox's vice president of marketing since March 2013. Previously, Mr. Shainer was Mellanox's vice president of marketing development from March 2012 to March 2013. Mr. Shainer joined Mellanox in 2001 as a design engineer and later served in senior marketing management roles between July 2005 and February 2012. Mr. Shainer holds several patents in the field of high-speed networking and contributed to the PCI-SIG PCI-X and PCIe specifications. Gilad Shainer holds a MSc degree (2001, Cum Laude) and a BSc degree (1998, Cum Laude) in Electrical Engineering from the Technion Institute of Technology in Israel. Scot Schultz Bio: Scot Schultz is a HPC technology specialist with broad knowledge in operating systems, high speed interconnects and processor technologies. Joining the Mellanox team in 2013, Schultz is 30-year veteran of the computing industry. Prior to joining Mellanox, he spent the past 17 years at AMD in various engineering and leadership roles in the area of high performance computing. Scot has also been instrumental with the growth and development of various industry organizations including the Open Fabrics Alliance, and continues to serve as a founding board-member of the OpenPOWER Foundation and Director of Educational Outreach and founding member of the HPC-AI Advisory Council.

Intelligent Interconnect Architecture to Enable Next Generation HPC - Linaro ...

Linaro

Yutaka Ishikawa - Post-K and Arm HPC Ecosystem - Linaro Arm HPC Workshop Santa Clara 2018 Bio: "Yutaka Ishikawa is the project leader of developing the post K supercomputer. From 1987 to 2001, he was a member of AIST (former Electrotechnical Laboratory), METI. From 1993 to 2001, he was the chief of Parallel and Distributed System Software Laboratory at Real World Computing Partnership. He led development of cluster system software called SCore, which was used in several large PC cluster systems around 2004. From 2002 to 2014, he was a professor at the University Tokyo. He led a project to design a commodity-based supercomputer called T2K open supercomputer. As a result, three universities, Tsukuba, Tokyo, and Kyoto, obtained each supercomputer based on the specification in 2008. He was also involved with the design of the Oakleaf-PACS, the successor of T2K supercomputer in both Tsukuba and Tokyo, whose peak performance is 25PF." Session Title: Post-K and Arm HPC Ecosystem Session Description: "Post-K, a flagship supercomputer in Japan, is being developed by Riken and Fujitsu. It will be the first supercomputer with Armv8-A+SVE. This talk will give an overview of Post-K and how RIKEN and Fujitsu are currently working on software stack for an Arm architecture."

Yutaka Ishikawa - Post-K and Arm HPC Ecosystem - Linaro Arm HPC Workshop Sant...

Linaro

Event: Arm Architecture HPC Workshop by Linaro and HiSilicon Location: Santa Clara, CA Speaker: Andrew J Younge Talk Title: Vanguard Astra - Petascale Arm Platform for U.S. DOE/ASC Supercomputing Talk Desc: The Vanguard program looks to expand the potential technology choices for leadership-class High Performance Computing (HPC) platforms, not only for the National Nuclear Security Administration (NNSA) but for the Department of Energy (DOE) and wider HPC community. Specifically, there is a need to expand the supercomputing ecosystem by investing and developing emerging, yet-to-be-proven technologies and address both hardware and software challenges together, as well as to prove-out the viability of such novel platforms for production HPC workloads. The first deployment of the Vanguard program will be Astra, a prototype Petascale Arm supercomputer to be sited at Sandia National Laboratories during 2018. This talk will focus on the arthictecural details of Astra and the significant investments being made towards the maturing the Arm software ecosystem. Furthermore, we will share initial performance results based on our pre-general availability testbed system and outline several planned research activities for the machine. Bio: Andrew Younge is a R&D Computer Scientist at Sandia National Laboratories with the Scalable System Software group. His research interests include Cloud Computing, Virtualization, Distributed Systems, and energy efficient computing. Andrew has a Ph.D in Computer Science from Indiana University, where he was the Persistent Systems fellow and a member of the FutureGrid project, an NSF-funded experimental cyberinfrastructure test-bed. Over the years, Andrew has held visiting positions at the MITRE Corporation, the University of Southern California / Information Sciences Institute, and the University of Maryland, College Park. He received his Bachelors and Masters of Science from the Computer Science Department at Rochester Institute of Technology (RIT) in 2008 and 2010, respectively.

Andrew J Younge - Vanguard Astra - Petascale Arm Platform for U.S. DOE/ASC Su...

Linaro

HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline

Linaro

HKG18-100K1 - George Grey: Opening Keynote

Linaro

HKG18-318 - OpenAMP Workshop

Linaro

HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline

Linaro

HKG18-315 - Why the ecosystem is a wonderful thing, warts and all

Linaro

HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor

Linaro

HKG18-TR08 - Upstreaming SVE in QEMU

Linaro

HKG18-120 - Devicetree Schema Documentation and Validation

Linaro

HKG18-223 - Trusted FirmwareM: Trusted boot

Linaro

HKG18-500K1 - Keynote: Dileep Bhandarkar - Emerging Computing Trends in the D...

Linaro

More from Linaro (20)

Deep Learning Neural Network Acceleration at the Edge - Andrea Gallo

Arm Architecture HPC Workshop Santa Clara 2018 - Kanta Vekaria

Huawei’s requirements for the ARM based HPC solution readiness - Joshua Mora

Bud17 113: distribution ci using qemu and open qa

OpenHPC Automation with Ansible - Renato Golin - Linaro Arm HPC Workshop 2018

HPC network stack on ARM - Linaro HPC Workshop 2018

It just keeps getting better - SUSE enablement for Arm - Linaro HPC Workshop ...

Intelligent Interconnect Architecture to Enable Next Generation HPC - Linaro ...

Yutaka Ishikawa - Post-K and Arm HPC Ecosystem - Linaro Arm HPC Workshop Sant...

Andrew J Younge - Vanguard Astra - Petascale Arm Platform for U.S. DOE/ASC Su...

HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline

HKG18-100K1 - George Grey: Opening Keynote

HKG18-318 - OpenAMP Workshop

HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline

HKG18-315 - Why the ecosystem is a wonderful thing, warts and all

HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor

HKG18-TR08 - Upstreaming SVE in QEMU

HKG18-120 - Devicetree Schema Documentation and Validation

HKG18-223 - Trusted FirmwareM: Trusted boot

HKG18-500K1 - Keynote: Dileep Bhandarkar - Emerging Computing Trends in the D...

Recently uploaded

Revolutionizing SAP® Processes with Automation and Artificial Intelligence

Precisely

Hyatt driving innovation and exceptional customer experiences with FIDO passw...

FIDO Alliance

Generative AI refers to a class of machine learning algorithms that are designed to generate new data samples that are similar to those in the training data. Unlike traditional AI models that are trained to recognize patterns and make predictions, generative AI models have the ability to create entirely new data based on the patterns they have learned. This is achieved through techniques such as generative adversarial networks (GANs), variational autoencoders (VAEs), and transformer architectures, among others.

Generative AI Use Cases and Applications.pdf

alexjohnson7307

Extensible Python: Robustness through Addition - PyCon 2024

Patrick Viafore

Introduction to FIDO Authentication and Passkeys.pptx

FIDO Alliance

AI mind or machine power point presentation

yogeshlabana357357

Tales from a Passkey Provider Progress from Awareness to Implementation.pptx

FIDO Alliance

Welcome to this session on UiPath Manufacturing and AI. In this session, we will discuss the importance UiPath plays with technology in the manufacturing and we will do an overview of AI and Document Understanding. Please join us to hear from UiPath and Community experts on why you might consider leveraging UiPath in manufacturing. Topics covered Community team overview The importance of UiPath technology for manufacturing UiPath AI and Document Understanding overview What is Document Understanding? DU Process Studio Template Components of DU Framework Q&A Speakers: Sebastian Seutter, Senior Industry Practice Director, UiPath, Inc. Priya Darshini, UiPath MVP RPA Solutions Architect Dzmitry Belanovski, Account Executive, UiPath, Inc.

UiPath manufacturing technology benefits and AI overview

DianaGray10

WebAssembly is Key to Better LLM Performance

Samy Fodil

ERP Contender Series: Acumatica vs. Sage Intacct

BrainSell Technologies

Intro to Passkeys and the State of Passwordless.pptx

FIDO Alliance

Design Guidelines for Passkeys 2024.pptx

FIDO Alliance

Ruby has a lot of standard libraries from Ruby 1.8. I promote them democratically with GitHub today via default and bundled gems. So, I'm working to extract them for Ruby 3.4 continuously and future versions. It's long journey for me. After that, some versions may suddenly happen LoadError at require when running bundle exec or bin/rails, for example matrix or net-smtp. We need to learn what's difference default/bundled gems with standard libraries. In this presentation, I will introduce what's the difficult to extract bundled gems from default gems and the details of the functionality that Ruby's require and bundle exec with default/bundled gems. You can learn how handle your issue about standard libraries.

Long journey of Ruby Standard library at RubyKaigi 2024

Hiroshi SHIBATA

In today's digital world, trust is key to customer relationships, but keeping it is a huge challenge. Customers are well-informed and empowered, quick to change brands if their trust is broken, even if it costs them more. This puts a lot of pressure on organizations to handle trust and safety issues with great care and transparency. The challenge, however, is real. Fragmented solutions have left privacy, legal, and security teams in a perpetual cycle of catch-up, struggling to update privacy notices, manage customer data rights, and answer lengthy security questionnaires—all while trying to prove ROI to the business. It's a thankless job, filled with repetition, tedious tasks, and constant interdepartmental coordination. Combine this with fast regulatory changes and the quick evolution of AI, and it becomes overwhelming. Join this webinar to learn more about TrustArc's new innovative solution Trust Center, the only unified, no-code online hub for trust and safety information built for privacy, security, compliance, and legal teams. Trust Center streamlines your path to compliance, shortens the pre-sales cycle, and reduces both legal and regulatory risks, saving time, effort, and cost. This webinar will review: - Why companies are building unified Trust Centers for a robust privacy program. - How unified Trust Centers streamline sales cycles, ensure regulatory compliance, and reduce operational bottlenecks. - How compliance, legal, security, GRC, and privacy teams benefit from a unified Trust Center in terms of needs, pains, and outcomes. - How TrustArc Trust Center saves time and work while reducing legal, reputational, and compliance risk by effectively managing policies, notices, terms, and disclosures, and providing real-time updates on subprocessors.

TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...

TrustArc

Portal Kombat : extension du réseau de propagande russe

中央社

Event-Driven Architecture Masterclass: Challenges in Stream Processing

ScyllaDB

Google I/O Extended 2024 Warsaw

GDSC PJATK

In today’s fast-paced digital world, harnessing the power of artificial intelligence (AI) can significantly enhance productivity and creativity across various domains. With the advent of advanced language models like ChatGPT, developers, marketers, data analysts, and professionals in numerous other fields can now leverage AI-generated prompts to spark innovative ideas and streamline their workflows.

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

iSEO AI

Syngulon’s technology expands the capacity for selection of microorganisms. The ability to select individual microbes with a behavior of interest is essential, whether for simple cloning at the bench, or for industry-scale production. Synthetic biology uses the concept of “bioengineering” to improve or modify existing genetic systems to create microbes with desired behaviors, and Syngulon uses this approach to develop its selection technologies. This selection technology is based on bacteriocins, ribosomally-produced peptides naturally made by most bacteria to kill competitive microbial species. These bacteriocins can have a limited or wide target range against other microbial species. This technology offers advantageous over antibiotic selection for several reasons: it avoids the use of antibiotics in the first place, helping to reduce the spread of antibiotic resistant microbes. The technology also increases product yield; as bacteriocins are generally smaller peptides, they do not impose a heavy metabolic burden on the producing cell. They can have a wide target specificity, helping to avoid genetic drift. Finally, our system is 100% plasmid-based (e.g. without chromosomal mutations), making it applicable for use in any E. coli strains.

Syngulon - Selection technology May 2024.pdf

Syngulon

Vector Search @ sw2con for slideshare.pptx

jbellis

Recently uploaded (20)

Revolutionizing SAP® Processes with Automation and Artificial Intelligence

Hyatt driving innovation and exceptional customer experiences with FIDO passw...

Generative AI Use Cases and Applications.pdf

Extensible Python: Robustness through Addition - PyCon 2024

Introduction to FIDO Authentication and Passkeys.pptx

AI mind or machine power point presentation

Tales from a Passkey Provider Progress from Awareness to Implementation.pptx

UiPath manufacturing technology benefits and AI overview

WebAssembly is Key to Better LLM Performance

ERP Contender Series: Acumatica vs. Sage Intacct

Intro to Passkeys and the State of Passwordless.pptx

Design Guidelines for Passkeys 2024.pptx

Long journey of Ruby Standard library at RubyKaigi 2024

TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...

Portal Kombat : extension du réseau de propagande russe

Event-Driven Architecture Masterclass: Challenges in Stream Processing

Google I/O Extended 2024 Warsaw

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

Syngulon - Selection technology May 2024.pdf

Vector Search @ sw2con for slideshare.pptx

SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM

1. Presented by Date Event SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM TrustZone Zoltan Kuscsik, PhD Tuesday 22 September 2015 SFO15

2. Introduction Open source Linux project utilizing ARM TrustZone(R) for developing trusted applications. The project is maintained by Linaro and STMicroelectronics. OP TEE is compliant with the Global Platforms API specifications. OP TEE OS: https://github.com/OP-TEE/optee_os OP TEE Client: https://github.com/OP-TEE/optee_client OP TEE Linux driver: https://github.com/OP-TEE/optee_linuxdriver Open CDM: https://github.com/fraunhoferfokus/open-content-decryption-module

3. Linux TrustZone / OP TEE OS OP TEE Client What is OP TEE? Linux Native App Global Platform TEE API TEE Supplicant OP TEE Linux Driver Storage OP TEE OS Trusted App (DRM) TEE Core HAL Secure Monitor OP TEE Hello World: https://github.com/jenswi-linaro/lcu14_optee_hello_world

4. Supported HW and Emulators Architectures: ARMv7, ARMv8 Foundation FVP ARMs Juno Board QEMU STMicroelectronics b2120 - h310 / h410 STMicroelectronics b2020-h416 Allwinner A80 Board HiKey Board (HiSilicon Kirin 620) MediaTek MT8173 EVB Board

5. Encrypted Media Extensions W3C draft for playback protected content using the HTMLMediaElement. The standard doesn’t specify the DRM subsystem itself but provides a API to interface/select a DRM subsystem. Supported by almost all browsers using various DRM platforms: Widewine, Adobe DRM, PlayReady

6. CDM portability and interoperability? ● Support for internal and external CDM implementations. ● Chromium code is closely following the EME standard, however, the standard is still in draft.

7. Open CDM Browser OCDM CDMI Service cdmi.h Interface for various key systems. mock.drm ClearKey/OpenSSL CDM PlayReady CDMI RPC ClearKey OP TEE

8. CDM implementations Chromium External Clear Key Linaro Clear Key CDM with SSL Linaro Clear Key CDM with OPTEE Linaro CDM PPAPI CDM Yes Yes Yes Yes OpenCDM No Yes Yes Yes OP TEE and TrustZone® No No Yes Yes PlayReady, other DRM support No No No Yes Compatibility ARMv7, ARMv8, x86 ARMv7, ARMv8, x86 ARMv7, ARMv8 ARMv7, ARMv8

9. OpenSSL ClearKey CDM ● Works both on X86 and ARM Linux. ● Allows the testing and exercising the Open CDM implementation: https://github.com/linaro-home/open-content-decryption-module-cdmi ● Upstreamed to OpenCDM project

10. OP TEE - CDM ● Used as a baseline for integrating OP TEE with commercial DRMs. ● Decrypting and playback of protected webm/mp4 videos in Chromium. ● Support for MS PlayReady on ARM Linux. ● Support for STM B2120, Allwinner and 96boards.

11. Secure data path Returning clear buffers to Linux space? Not very secure. Secure RAMNon-secure RAM Encrypted buffers Trusted App (DRM) Decrypted Buffers Decoded buffers Browser EME CDM Player DMABuf reference Decoder HW Display

SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM

Similar to SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM (20)

More from Linaro

More from Linaro (20)

Recently uploaded

Recently uploaded (20)

SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM