BKK16-201 Play Ready OPTEE Integration with Secure Video Path lhg-1

•

3 likes•2,834 views

This presentation provides a current view of the Security work performed in LHG. The focus is on hardware protected DRM integrated with OP TEE, creation of a Secure Data Path coupled with the Open Content Decryption Module, and the lessons learned from integrating third party libraries into trusted applications.

Presented by
Date
Event
BKK16-201 - PlayReady OPTEE
Integration with Secure Video Path
Zoltan Kuscsik, PhD
BKK16-201 March 8, 2016
Linaro Connect BKK16

Overview
The solution presented here integrates the following key
components:
● W3C EME Working Draft
● Microsoft® PlayReady® DRM Porting Kit v3.0
● OP-TEE OS
● OpenCDM/OpenCDMI
● Chromium v45

Updates since SFO15
● Secure Data Path with OP TEE/Playready proof of
concept on STM B2120 in progress.
● Secure Memory Allocator Framework (SMAF)
integration - work in progress.
● EME with OP TEE on Hikey. We got
Wayland/Chromium finally working!
● Moving to 4.5 Kernel and OP TEE master.
● AES OCDMI publicly available.
● Complete Playready TA implementation. We now
support the Playready Interface For TEE (PRiTEE).

Supported boards
STM B2120
96boards - HiKey

Encrypted Media Extensions - Buffer decrypt
Browser CDM
Load TA / Init SessionNew session request
Send License Request
Update License
Key
Update available keys
Allocate and Secure buffer
using SMAF
Secure Buffer
Decrypt
Decrypt Buffer Encrypted Buf
PlayReadyTA

EME SW stack - what can be open?
Chromium Android Framework
DRM HALOCDM
Widevine
PPAPI CDM
PlayReady
CDMI
SMAF
OPTEE Kernel Driver
Linux Kernel
ClearKey
CDMI
Closed Source
Open Source
Playready TA
SMAF TA
HDCP TA
Policy Manager (?)
ClearKey TA
TEE
OP TEE OS

Secure Memory Allocation Framework - CMA Allocator

Playready integration
PlayReady has a CDMi interface as part of the PlayReady’
s DRM Licensed product. This CDMi component provided
is very close to the one that is required by the open source
OpenCDMi project.
The Linaro secure media solution is an end-to-end
DRM solution with a PlayReady license server. The
client receives PlayReady encrypted content and
communicates with a PlayReady server to request
and receive a license and keys required to decrypt the
content. The licence request is generated by
PlayReady encapsulated by the CDMi, passed up to
the to HTML5 application which initiates the the
licence acquisition from the Playready license servers.

Open CDM
Browser
OCDM
CDMI Service
cdmi.h
Interface for various key.
mock.drm ClearKey/OpenSSL
CDM
PlayReady CDMI
RPC
ClearKey
OP TEE
The OpenCDM uses the platform’s native
RPC system to separate the CDM from the
browser. The project has two main
components:
1) A browser specific CDM integration
layer and the communication
interfaces for the CDM.
2) A CDMi service implementation.

Implementation overview
Chromium
External
Clear Key
Linaro Clear
Key CDM
with SSL
Linaro Clear
Key CDM with
OPTEE
Linaro CDM
with TEE
Linaro CDM with
software Playready
Linaro CDM with
HW Playready
PPAPI CDM Yes Yes Yes Yes Yes Yes
OpenCDM No Yes Yes Yes Yes Yes
OP TEE and
TrustZone®
No No Yes Yes No Yes
PlayReady,
other DRM
support
No No No Yes Yes Yes
Compatibility ARMv7,
ARMv8, x86
ARMv7,
ARMv8, x86
ARMv7, ARMv8 ARMv7,
ARMv8
ARMv7, ARMV8 ARMv7, ARMV8
HiKey Yes Yes Yes Yes Yes Yes (in development)
Dragonboard Yes Yes No No Yes No

OpenSSL ClearKey CDM
● Works both on X86 and ARM Linux.
● Allows the testing and exercising the Open CDM implementation:
https://github.com/linaro-home/open-content-decryption-module-cdmi
● Upstreamed to OpenCDM project

OP TEE ClearKey CDMI
● Needs OPTEE enabled HW with Chromium running
● ClearKey AES128 decryption in OP TEE:
https://github.com/kuscsik/optee-clearkey-cdmi
● Works with upstream OCDM

Links
● Playready: https://msdn.microsoft.com/en-
us/library/windows/apps/mt429380.aspx
● OP TEE
https://github.com/OP-TEE/optee_os
● Linaro OpenCDM
https://github.com/kuscsik/linaro-cdmi

"Session ID: BUD17-400 Session Name: Secure Data Path with OPTEE - BUD17-400 Speaker: Mark Gregotski Track: LHG ★ Session Summary ★ LHG is using the ION-based secure memory allocator integrated with OPTEE as the basis for secure data path processing pipeline. LHG is following the W3C EME protocol and supporting Content Decryption Modules (CDMs) from Widevine and PlayReady. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/bud17/bud17-400/ Presentation: https://www.slideshare.net/linaroorg/bud17400-secure-data-path-with-optee Video: https://youtu.be/6JdzsWZq4Ls --------------------------------------------------- ★ Event Details ★ Linaro Connect Budapest 2017 (BUD17) 6-10 March 2017 Corinthia Hotel, Budapest, Erzsébet krt. 43-49, 1073 Hungary --------------------------------------------------- Keyword: LHG, secure-data, OPTEE http://www.linaro.org http://connect.linaro.org --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://twitter.com/linaroorg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

Lcu14 107- op-tee on ar mv8

Linaro

LCU14-107: OP-TEE on ARMv8 --------------------------------------------------- Speaker: Jens Wiklander Date: September 15, 2014 --------------------------------------------------- ★ Session Summary ★ SWG is porting OP-TEE to ARMv8 using Fixed Virtual Platform. Initially OP-TEE is running secure world in aarch32 mode, but with the normal world code running in aarch64 mode. Since ARMv8 uses ARM Trusted Firmware we have patched it with an OP-TEE dispatcher to be able to communicate between secure and normal world. --------------------------------------------------- ★ Resources ★ Zerista: http://lcu14.zerista.com/event/member/137710 Google Event: https://plus.google.com/u/0/events/c0ef114n77bhgbns9vb85g9n6ak Presentation: http://www.slideshare.net/linaroorg/lcu14-107-optee-on-ar-mv8 Video: https://www.youtube.com/watch?v=JViplz-ah9M&list=UUIVqQKxCyQLJS6xvSmfndLA Etherpad: http://pad.linaro.org/p/lcu14-107 --------------------------------------------------- ★ Event Details ★ Linaro Connect USA - #LCU14 September 15-19th, 2014 Hyatt Regency San Francisco Airport --------------------------------------------------- http://www.linaro.org http://connect.linaro.org

HKG15-311: OP-TEE for Beginners and Porting Review

Linaro

HKG15-311: OP-TEE for Beginners and Porting Review --------------------------------------------------- Speaker: Victor Chong Date: February 11, 2015 --------------------------------------------------- ★ Session Summary ★ Explains the building blocks involved in Security including TrustZone, OP-TEE, Trusted Firmware etc. Goes into detail on how Secure Boot Works.. and Why. Explains how a simple secure Trusted Application interacts with OP-TEE and works. Brief overview on how to port OP-TEE to an ARM platform. Opens discussions for Potential Challenges and Hardware limitations and how they can be overcome. -------------------------------------------------- ★ Resources ★ Pathable: https://hkg15.pathable.com/meetings/250816 Video: https://www.youtube.com/watch?v=Fksx4-bpHRY Etherpad: http://pad.linaro.org/p/hkg15-311 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2015 - #HKG15 February 9-13th, 2015 Regal Airport Hotel Hong Kong Airport --------------------------------------------------- http://www.linaro.org http://connect.linaro.org

LCU14 302- How to port OP-TEE to another platform

Linaro

LCU14 302- How to port OP-TEE to another platform --------------------------------------------------- Speaker: Joakim Bech, Jens Wiklander and Pascal Brand Date: September 17, 2014 --------------------------------------------------- ★ Session Summary ★ OP-TEE (Open Portable Trusted Execution Environment) is the source code for the TEE in Linux using the ARM Trustzone technology. This component meets the Global Platform TEE System Architecture specification. Most of the code is generic. However, a number of platform specific characteristics are addressed, such as memory layout or board specific hardware IP. In this session, you can learn the steps to follow to port OP-TEE for your armv7 platform, as the ones that have been defined when porting OP-TEE to A80 (SWG-77). OP-TEE to the Allwinner A80 platform --------------------------------------------------- ★ Resources ★ Zerista: http://lcu14.zerista.com/event/member/137748 Google Event: https://plus.google.com/u/0/events/cnd044lmnid6jcoj1a9svlhmkj0 Video: https://www.youtube.com/watch?v=QgaGJow7hws&list=UUIVqQKxCyQLJS6xvSmfndLA Etherpad: http://pad.linaro.org/p/lcu14-302 --------------------------------------------------- ★ Event Details ★ Linaro Connect USA - #LCU14 September 15-19th, 2014 Hyatt Regency San Francisco Airport --------------------------------------------------- http://www.linaro.org http://connect.linaro.org

SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM

Linaro

SFO15-205: OP-TEE Content Decryption with Microsoft PlayReady on ARM Speakers: Zoltan Kuscsik Date: September 22, 2015 ★ Session Description ★ This presentation gives an overview of how various components of set-top software are integrated to provide a W3C EME solution employing a commercial DRM integrated with an open source TEE running on ARM TrustZone. ★ Resources ★ Video: https://www.youtube.com/watch?v=defbtpsw6h8 Presentation: http://www.slideshare.net/linaroorg/sfo15205-optee-content-decryption-with-microsoft-playready-on-arm-53111683 Etherpad: pad.linaro.org/p/sfo15-205 Pathable: https://sfo15.pathable.com/meetings/302837 ★ Event Details ★ Linaro Connect San Francisco 2015 - #SFO15 September 21-25, 2015 Hyatt Regency Hotel http://www.linaro.org http://connect.linaro.org

HKG18-203 - Overview of Linaro DRM

Linaro

Session ID: HKG18-203 Session Name: HKG18-203 - Overview of Linaro DRM Speaker: Peter Griffin Track: Digital Home ★ Session Summary ★ This presentation will provide an overview of the Linaro Digital Rights Management (DRM) integrations with OP-TEE for Linux and Android. Topics covered will include the latest status for ClearKey, Widevine and Playready for supported browsers and boards. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-203/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-203.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-203.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Digital Home 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961

BKK16-110 A Gentle Introduction to Trusted Execution and OP-TEE

Linaro

Smart connected devices such as mobile phones, tablets and Digital TVs are required to handle data with strong security and confidentiality requirements. A “Trusted Execution Environment” (TEE) provides an environment for processing data securely, protected from normal platform applications. This talk is intended as an introduction to Trusted Execution, and the open-source Trusted Execution Environment OP-TEE in particular. It introduces the GlobalPlatform TEE Specifications, explains how Trusted Execution is implemented by ARM TrustZone and OP-TEE, and outlines how trusted boot software manages the secure boot of an ARM platform. Finally, it gives some pointers on how to get started with OP-TEE.

SFO15-200: Linux kernel generic TEE driver

Linaro

SFO15-200: Linux kernel generic TEE driver Speaker: Jens Wiklander Date: September 22, 2015 ★ Session Description ★ At this session we will get more knowledge about the TEE driver that Linaro has been working on for the last couple of months. Questions to be answered are for example: What are the API’s? How does the TEE driver work as a communication channel. What will a developer need to think of when adding support for another TEE solution? ★ Resources ★ Video: https://www.youtube.com/watch?v=BhLndLUQamM Presentation: http://www.slideshare.net/linaroorg/sfo15200-linux-kernel-generic-tee-driver Etherpad: pad.linaro.org/p/sfo15-200 Pathable: https://sfo15.pathable.com/meetings/302831 ★ Event Details ★ Linaro Connect San Francisco 2015 - #SFO15 September 21-25, 2015 Hyatt Regency Hotel http://www.linaro.org http://connect.linaro.org

Session ID: SFO17-309 Session Name: Secure storage updates - SFO17-309 Speaker: Jens Wiklander - Jerome Forissier Track: Security ★ Session Summary ★ The last release of OP-TEE includes big updates to secure storage. Integrity protection is improved and the entire secure storage space is saved as one snapshot on each update. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/sfo17/sfo17-309/ Presentation: Video: --------------------------------------------------- ★ Event Details ★ Linaro Connect San Francisco 2017 (SFO17) 25-29 September 2017 Hyatt Regency San Francisco Airport --------------------------------------------------- Keyword: http://www.linaro.org http://connect.linaro.org --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://twitter.com/linaroorg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961

Secure Boot on ARM systems – Building a complete Chain of Trust upon existing...

Linaro

Session ID: SFO17-200 Session Name: - SFO17-200 Speaker: Track: ★ Session Summary ★ --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/sfo17/sfo17-200/ Presentation: Video: --------------------------------------------------- ★ Event Details ★ Linaro Connect San Francisco 2017 (SFO17) 25-29 September 2017 Hyatt Regency San Francisco Airport --------------------------------------------------- Keyword: http://www.linaro.org http://connect.linaro.org --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://twitter.com/linaroorg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/102696

TEE - kernel support is now upstream. What this means for open source security

Linaro

TEE security infrastructure is now upstream in the Linux kernel, thanks to the hard work of many people in the ARM open source ecosystem. In this upcoming webinar, Joakim Bech and Jens Wiklander of the Linaro Security Working Group explain: ‣ Why upstream Linux kernel driver support is an important milestone. ‣ The relationship with specifications such as GlobalPlatform. ‣ A recap of the design principles for the TEE driver. ‣ How to get involved with TEE development. This webinar is based on the work of the Linaro Security Working Group. Their work helps Linaro achieve its mission of providing upstream open source support for the ARM ecosystem. The webinar will be of interest to developers and engineering managers who would like the latest status on TEE support in Linux, particularly those looking to develop secure applications with e.g. OP-TEE. It’s also a great case study for those interested in the challenges of Linux kernel upstreaming. There will be the opportunity to ask questions before, during and after the webinar. 🎙 Speakers: Joakim Bech, Security Working Group Tech Lead, Linaro Jens Wiklander, Security Working Group Engineer & Upstream Driver Author, Linaro 🎯 Moderator: Bill Fletcher, EMEA Field Engineering, Linaro ✨ Register here http://linaro.co/webinar01 For more information on... On Linaro - Leading Collaboration in the ARM Ecosystem - linaro.org On OP-TEE - the TEE in Linux using the ARM® TrustZone® technology op-tee.org ---------------------------------------------- Videos & Presentation -- Introduction to OP-TEE -- A great introduction to OP-TEE security written from the standpoint of Automotive Grade Linux. It's only 13 slides with some great diagrams explaining trusted execution, secure boot and isolation. #Automotive #AGL #OP-TEE #Linux https://www.slideshare.net/YannickGicquel/introduction-to-optee-26-may-2016 -- OP-TEE for Beginners and Porting Review -- Explains the building blocks involved in Security including TrustZone, OP-TEE, Trusted Firmware etc. Goes into detail on how Secure Boot Works.. and Why. Explains how a simple secure Trusted Application interacts with OP-TEE and works. Brief overview on how to port OP-TEE to an ARM platform. Opens discussions for Potential Challenges and Hardware limitations and how they can be overcome. #TrustedApplication #Trustzone http://connect.linaro.org/resource/hkg15/hkg15-311-op-tee-for-beginners-and-porting-review/

Trusted firmware deep_dive_v1.0_

Linaro

SFO15-503: Secure storage in OP-TEE

Linaro

SFO15-503: Secure storage in OP-TEE Speaker: James Kung, Sheng-Yu Chiu Date: September 25, 2015 ★ Session Description ★ Linaro has been refining the secure storage solution in OP-TEE and in this session the audience will get an update about the current status and also will get to know about the implementation details, design decisions and what algorithms that has been used. ★ Resources ★ Video: https://www.youtube.com/watch?v=pChEdObYLRM Presentation: http://www.slideshare.net/linaroorg/sfo15503-secure-storage-in-optee Etherpad: pad.linaro.org/p/sfo15-503 Pathable: https://sfo15.pathable.com/meetings/303094 ★ Event Details ★ Linaro Connect San Francisco 2015 - #SFO15 September 21-25, 2015 Hyatt Regency Hotel http://www.linaro.org http://connect.linaro.org

OPTEE on QEMU - Build Tutorial

Dalton Valadares

LCU14 500 ARM Trusted Firmware

Linaro

LCU14 500 ARM Trusted Firmware --------------------------------------------------- Speaker: Andrew Thoelke Date: September 19, 2014 --------------------------------------------------- ★ Resources ★ Zerista: http://lcu14.zerista.com/event/member/137787 Google Event: https://plus.google.com/u/0/events/c6cbh0rr2488ls6bkogvi4ggcic Video: https://www.youtube.com/watch?v=je0_-yYgKdc&list=UUIVqQKxCyQLJS6xvSmfndLA Etherpad: http://pad.linaro.org/p/lcu14-500 --------------------------------------------------- ★ Event Details ★ Linaro Connect USA - #LCU14 September 15-19th, 2014 Hyatt Regency San Francisco Airport --------------------------------------------------- http://www.linaro.org http://connect.linaro.org

Part 02 Linux Kernel Module Programming

Tushar B Kute

LCU14-103: How to create and run Trusted Applications on OP-TEE

Linaro

LCU14-103: How to create and run Trusted Applications on OP-TEE --------------------------------------------------- Speaker: Joakim Bech Date: September 15, 2014 --------------------------------------------------- Coresight is the name given to a set of IP blocks providing hardware assisted tracing for ARM based SoCs. This presentation will give an introduction to the technology, how it works and offer a glimpse of the capabilities it offers. More specifically we will go over the components that are part of the architecture and how they are used. Next will be presented the framework Linaro is working on in an effort to provide consolidation and standardization of interfaces to the coresight subsystem. We will conclude with a status of our current upstreaming efforts and how we see the coming months unfolding. --------------------------------------------------- ★ Resources ★ Zerista: http://lcu14.zerista.com/event/member/137703 Google Event: https://plus.google.com/u/0/events/cvb85kqv10dsc4k3e0hcvbr6i58 Presentation: http://www.slideshare.net/linaroorg/lcu14-101-coresight-overview Video: https://www.youtube.com/watch?v=IQhbM55F23U&list=UUIVqQKxCyQLJS6xvSmfndLA Etherpad: http://pad.linaro.org/p/lcu14-101 --------------------------------------------------- ★ Event Details ★ Linaro Connect USA - #LCU14 September 15-19th, 2014 Hyatt Regency San Francisco Airport ---------------------------------------------------

LAS16 111 - Raspberry pi3, op-tee and jtag debugging

96Boards

Lcu14 306 - OP-TEE Future Enhancements

Linaro

Lcu14 306 - OP-TEE Future Enhancements --------------------------------------------------- Speaker: Joakim Bech, Jens Wiklander and Pascal Brand Date: September 17, 2014 --------------------------------------------------- ★ Session Summary ★ In this discussion session, we will cover the plans Linaro have to enhance the current OP-TEE implementation. Different topics will be covered, among them: Adding a cryptographic layer to support custom cryptographic libraries or HW-acceleration IP / instructions (REQ-413 and REQ-421) PSCI support (REQ-415) Add ECC support for TEE Internal API 1.1 (REQ-419) --------------------------------------------------- ★ Resources ★ Zerista: http://lcu14.zerista.com/event/member/137753 Google Event: https://plus.google.com/u/0/events/cq01taemqeeblb8k8jnu21lifus Video: https://www.youtube.com/watch?v=GTKEmdUU1lE&list=UUIVqQKxCyQLJS6xvSmfndLA Etherpad: http://pad.linaro.org/p/lcu14-306 --------------------------------------------------- ★ Event Details ★ Linaro Connect USA - #LCU14 September 15-19th, 2014 Hyatt Regency San Francisco Airport --------------------------------------------------- http://www.linaro.org http://connect.linaro.org

Booting Android: bootloaders, fastboot and boot images

Chris Simmonds

HKG18-402 - Build secure key management services in OP-TEE

Linaro

Session ID: HKG18-402 Session Name: HKG18-402 - Build secure key management services in OP-TEE Speaker: Etienne Carriere Track: Security ★ Session Summary ★ The session presents an initiative to build secure key management services in the OP-TEE project. Based on OP-TEE services (persistent storage, cryptography, time, etc) one could build a trusted application of store and use secure keys. An open source implementation for generic key services could be of interest. However there are many client APIs defined in the ecosystem which is a matter of concern for standardization of such services. The session will open a discussion on this and presents the current choice of the PKCS#11 Cryptoki. There can be lot of key attributes and cryptographic schemes to be supported. The session will present the current plans (starting from AES flavors) and what is currently missing in the OP-TEE (as certificate support, bootloader support). This session aims at getting feedback from the community on this topic, discuss about expected services and client APIs. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-402/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-402.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-402.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Security 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961

BUD17-416: Benchmark and profiling in OP-TEE

Linaro

"Session ID: BUD17-416 Session Name: Benchmark and profiling in OP-TEE - BUD17-416 Speaker: Jerome Forissier, Igor Opaniuk Track: Security ★ Session Summary ★ Benchmark and profiling are two newly developed features in OP-TEE. In this session we will cover what has been done and what is left to do and a bit about how it has been implemented. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/bud17/bud17-416/ Presentation: https://www.slideshare.net/linaroorg/bud17416-benchmark-and-profiling-in-optee Video: https://youtu.be/gr6AxvqfDds --------------------------------------------------- ★ Event Details ★ Linaro Connect Budapest 2017 (BUD17) 6-10 March 2017 Corinthia Hotel, Budapest, Erzsébet krt. 43-49, 1073 Hungary --------------------------------------------------- Keyword: security, OP-TEE, benchmark http://www.linaro.org http://connect.linaro.org --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://twitter.com/linaroorg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

HKG18-411 - Introduction to OpenAMP which is an open source solution for hete...

Linaro

Session ID: HKG18-411 Session Name: HKG18-411 - Introduction to OpenAMP which is an open source solution for heterogeneous system orchestration and communication Speaker: Wendy Liang Track: IoT, Embedded ★ Session Summary ★ Introduction to OpenAMP which is an open source solution for heterogeneous system orchestration and communication --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-411/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-411.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-411.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: IoT, Embedded 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961

LAS16-406: Android Widevine on OP-TEE

Linaro

LAS16-406: Android Widevine on OP-TEE Speakers: Date: September 29, 2016 ★ Session Description ★ In this session we will learn about what has been done to get Android Widevine to run OP-TEE. ★ Resources ★ Etherpad: pad.linaro.org/p/las16-406 Presentations & Videos: http://connect.linaro.org/resource/las16/las16-406/ ★ Event Details ★ Linaro Connect Las Vegas 2016 – #LAS16 September 26-30, 2016 http://www.linaro.org http://connect.linaro.org

Scheduling in Android

Opersys inc.

LCA14: LCA14-502: The way to a generic TrustZone® solution

Linaro

Fun with Network Interfaces

Kernel TLV

Agenda: In this session, Shmulik Ladkani discusses the kernel's net_device abstraction, its interfaces, and how net-devices interact with the network stack. The talk covers many of the software network devices that exist in the Linux kernel, the functionalities they provide and some interesting use cases. Speaker: Shmulik Ladkani is a Tech Lead at Ravello Systems. Shmulik started his career at Jungo (acquired by NDS/Cisco) implementing residential gateway software, focusing on embedded Linux, Linux kernel, networking and hardware/software integration. 51966 coffees and billions of forwarded packets later, with millions of homes running his software, Shmulik left his position as Jungo’s lead architect and joined Ravello Systems (acquired by Oracle) as tech lead, developing a virtual data center as a cloud service. He's now focused around virtualization systems, network virtualization and SDN.

LAS16-504: Secure Storage updates in OP-TEE

Linaro

LAS16-504: Secure Storage updates in OP-TEE Speakers: Jerome Forissier Date: September 30, 2016 ★ Session Description ★ Since the presentation back in 2015 (SFO15), there has been functionality added, like RPMB and there has also been some changes in general to the secure storage code. This presentation will summarize what has been happening and will also talk about what’s left to do. ★ Resources ★ Etherpad: pad.linaro.org/p/las16-504 Presentations & Videos: http://connect.linaro.org/resource/las16/las16-504/ ★ Event Details ★ Linaro Connect Las Vegas 2016 – #LAS16 September 26-30, 2016 http://www.linaro.org http://connect.linaro.org

[Nemus]All About Chromecast

Nemus

What's hot

Introduction to Optee (26 may 2016)

Yannick Gicquel

Secure storage updates - SFO17-309

Linaro

Secure Boot on ARM systems – Building a complete Chain of Trust upon existing...

Linaro

TEE - kernel support is now upstream. What this means for open source security

Linaro

Trusted firmware deep_dive_v1.0_

Linaro

SFO15-503: Secure storage in OP-TEE

Linaro

OPTEE on QEMU - Build Tutorial

Dalton Valadares

LCU14 500 ARM Trusted Firmware

Linaro

Part 02 Linux Kernel Module Programming

Tushar B Kute

LCU14-103: How to create and run Trusted Applications on OP-TEE

Linaro

LAS16 111 - Raspberry pi3, op-tee and jtag debugging

96Boards

Lcu14 306 - OP-TEE Future Enhancements

Linaro

Booting Android: bootloaders, fastboot and boot images

Chris Simmonds

HKG18-402 - Build secure key management services in OP-TEE

Linaro

BUD17-416: Benchmark and profiling in OP-TEE

Linaro

HKG18-411 - Introduction to OpenAMP which is an open source solution for hete...

Linaro

LAS16-406: Android Widevine on OP-TEE

Linaro

Scheduling in Android

Opersys inc.

LCA14: LCA14-502: The way to a generic TrustZone® solution

Linaro

Fun with Network Interfaces

Kernel TLV

What's hot (20)

Introduction to Optee (26 may 2016)

Secure storage updates - SFO17-309

Secure Boot on ARM systems – Building a complete Chain of Trust upon existing...

TEE - kernel support is now upstream. What this means for open source security

Trusted firmware deep_dive_v1.0_

SFO15-503: Secure storage in OP-TEE

OPTEE on QEMU - Build Tutorial

LCU14 500 ARM Trusted Firmware

Part 02 Linux Kernel Module Programming

LCU14-103: How to create and run Trusted Applications on OP-TEE

LAS16 111 - Raspberry pi3, op-tee and jtag debugging

Lcu14 306 - OP-TEE Future Enhancements

Booting Android: bootloaders, fastboot and boot images

HKG18-402 - Build secure key management services in OP-TEE

BUD17-416: Benchmark and profiling in OP-TEE

HKG18-411 - Introduction to OpenAMP which is an open source solution for hete...

LAS16-406: Android Widevine on OP-TEE

Scheduling in Android

LCA14: LCA14-502: The way to a generic TrustZone® solution

Fun with Network Interfaces

Viewers also liked

LAS16-504: Secure Storage updates in OP-TEE

Linaro

[Nemus]All About Chromecast

Nemus

BKK16-309A Open Platform support in UEFI

Linaro

BKK16-505 Kernel and Bootloader Consolidation and Upstreaming

Linaro

BKK16-211 Internet of Tiny Linux (io tl)- Status and Progress

Linaro

LAS16-306: Exploring the Open Trusted Protocol

Linaro

LAS16-306: Exploring the Open Trusted Protocol Speakers: Marc Canel Date: September 28, 2016 ★ Session Description ★ Interconnected systems require trust between devices and service providers. To deal with this problem, several companies (ARM, Solacia, Symantec, Intercede) collaborated on the Open Trust Protocol (OTrP), which combines a secure architecture with trusted code management, using technologies proven in large scale banking and sensitive data applications on mass-market devices such as smartphones and tablets. ★ Resources ★ Etherpad: pad.linaro.org/p/las16-306 Presentations & Videos: http://connect.linaro.org/resource/las16/las16-306/ ★ Event Details ★ Linaro Connect Las Vegas 2016 – #LAS16 September 26-30, 2016 http://www.linaro.org http://connect.linaro.org

HKG15-505: Power Management interactions with OP-TEE and Trusted FirmwareLinaro

BKK16-200 Designing Security into low cost IO T Systems

Linaro

….Trust and security are essential for the Internet of Things (IoT) to scale. As your product becomes successful, attraction will be high for it to be hacked and, as a consumer, you'll suffer with consequences if security is not baked into the system, at every level. With IoT, we now need to enable an appropriate level of security for low cost IoT designs done by people with little or no security expertise. In this presentation, you will learn how ARM, Linaro and the ARM partnership are securing these low cost IoT endpoints by providing device security, lifecycle security and communication security, without the need for in-depth security experts…

API World 2013 - Transforming the Netflix API

Benjamin Schmaus

The Netflix API has undergone a transformation since its inception in 2008. It has transitioned from being a public API with a generic RESTful interface to a platform for creating highly optimized, device-centric APIs that are critical to delivering the Netflix streaming experience on over 1000 different device types. This talk covers the design principles that shaped the transformation of the API as well as the technology that powers it, enabling rapid user experience iteration and bringing Netflix streaming to almost 38 million subscribers around the world.

OOYALA

Amazon Web Services

LAS16-203: Platform security architecture for embedded devices

Linaro

LAS16-203: Platform security architecture for embedded devices Speakers: Mark Hambleton Date: September 27, 2016 ★ Session Description ★ Heads up on what ARM are doing with the new ARMv8-M architecture from a software perspective. ★ Resources ★ Etherpad: pad.linaro.org/p/las16-203 Presentations & Videos: http://connect.linaro.org/resource/las16/las16-203/ ★ Event Details ★ Linaro Connect Las Vegas 2016 – #LAS16 September 26-30, 2016 http://www.linaro.org http://connect.linaro.org

LAS16-111: Easing Access to ARM TrustZone – OP-TEE and Raspberry Pi 3

Linaro

LAS16-111: Raspberry Pi3, OP-TEE and JTAG debugging Speakers: Date: September 26, 2016 ★ Session Description ★ ARM TrustZone is a critical technology for securing IoT devices and systems. But awareness of TrustZone and its benefits lags within the maker community as well as among enterprises. The first step to solving this problem is lowering the cost of access. Sequitur Labs and Linaro have joined forces to address this problem by making a port of OP-TEE available on the Raspberry Pi 3. The presentation covers the value of TrustZone for securing IoT and how customers can learn more through this joint effort. Embedded systems security remains a challenge for many developers. Awareness of mature, proven technologies such as ARM TrustZone is very low among the Maker community as well as among enterprises. As a result this foundational technology is largely being ignored as a security solution. Sequitur Labs and Linaro have taken an innovative approach combining an Open Source solution – OP-TEE with Raspberry Pi 3. The Raspberry Pi 3 is one of the world’s most popular platforms among device makers. Its value as an educational tool for learning about embedded systems development is proven. Sequitur Labs have also enabled bare metal debugging via JTag on the Pi 3 enhancing the value of the Pi 3 as an educational tool for embedded systems development. The presentation will focus on ARM v8a architecture and instruction set ARM Trusted Firmware TrustZone and OP-TEE basics JTAG and bare metal debugging the Raspberry Pi 3 ★ Resources ★ Etherpad: pad.linaro.org/p/las16-111 Presentations & Videos: http://connect.linaro.org/resource/las16/las16-111/ ★ Event Details ★ Linaro Connect Las Vegas 2016 – #LAS16 September 26-30, 2016 http://www.linaro.org http://connect.linaro.org

HKG15-505: Power Management interactions with OP-TEE and Trusted Firmware

Linaro

HKG15-505: Power Management interactions with OP-TEE and Trusted Firmware --------------------------------------------------- Speaker: Jorge Ramirez-Ortiz Date: February 13, 2015 --------------------------------------------------- ★ Session Summary ★ [Note: this is a joint Security/Power Management session) Understand what use cases related to Power Management have to interact with Trusted Firmware via Secure calls. Walk through some key use cases like CPU Suspend and explain how PM Linux drivers interacts with Trusted Firmware / PSCI -------------------------------------------------- ★ Resources ★ Pathable: https://hkg15.pathable.com/meetings/250855 Video: https://www.youtube.com/watch?v=hQ2ITjHZY4s Etherpad: http://pad.linaro.org/p/hkg15-505 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2015 - #HKG15 February 9-13th, 2015 Regal Airport Hotel Hong Kong Airport --------------------------------------------------- http://www.linaro.org http://connect.linaro.org

Viewers also liked (13)

LAS16-504: Secure Storage updates in OP-TEE

[Nemus]All About Chromecast

BKK16-309A Open Platform support in UEFI

BKK16-505 Kernel and Bootloader Consolidation and Upstreaming

BKK16-211 Internet of Tiny Linux (io tl)- Status and Progress

LAS16-306: Exploring the Open Trusted Protocol

HKG15-505: Power Management interactions with OP-TEE and Trusted Firmware

BKK16-200 Designing Security into low cost IO T Systems

API World 2013 - Transforming the Netflix API

OOYALA

LAS16-203: Platform security architecture for embedded devices

LAS16-111: Easing Access to ARM TrustZone – OP-TEE and Raspberry Pi 3

HKG15-505: Power Management interactions with OP-TEE and Trusted Firmware

HKG18-318 - OpenAMP Workshop

Linaro

"Session ID: HKG18-318 Session Name: HKG18-318 - OpenAMP Workshop Speaker: Wendy Liang Track: Ecosystem Day ★ Session Summary ★ --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-318/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-318.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-318.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Ecosystem Day 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline

Linaro

"Session ID: HKG18-501 Session Name: HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline Speaker: Chris Redpath Track: Mobile, Kernel ★ Session Summary ★ This session will introduce the changes to EAS planned for 4.14 kernel, and how Arm hopes that EAS will develop in future. EAS has already evolved from an Arm/Linaro joint project to involving a much wider community of SoC vendors, Google and interested device manufacturers. We will highlight the product-specific pieces remaining in the Android Common Kernel EAS implementation, and our plans to provide an upstreaming plan for each product feature. In particular, the new 'simplified energy model' is designed to provide mainline-friendliness and comparable performance using a simple DT expression of cpu power/performance. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-501/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-501.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-501.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Mobile, Kernel 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

HKG18-315 - Why the ecosystem is a wonderful thing, warts and all

Linaro

"Session ID: HKG18-315 Session Name: HKG18-315 - Why the ecosystem is a wonderful thing warts and all Speaker: Andrew Wafaa Track: Ecosystem Day ★ Session Summary ★ The Arm ecosystem is a vibrant place, but it's not always smooth sailing. This presentation will go through the highs and lows of getting the ecosystem fully Arm enabled. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-315/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-315.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-315.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Ecosystem Day 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor

Linaro

"Session ID: HKG18-115 Session Name: HKG18-115 - Partitioning ARM Systems with the Jailhouse Hypervisor Speaker: Jan Kiszka Track: Security ★ Session Summary ★ The open source hypervisor Jailhouse provides hard partitioning of multicore systems to co-locate multiple Linux or RTOS instances side by side. It aims at low complexity and minimal footprint to achieve deterministic behavior and enable certifications according to safety or security standards. In this session, we would like to look at the ARM-specific status of Jailhouse and discuss applications, to-dos and possible collaborations around it with the ARM community. The session is intended to be half presentation, half Q&A / discussion. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-115/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-115.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-115.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Security 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

HKG18-TR08 - Upstreaming SVE in QEMU

Linaro

"Session ID: HKG18-TR08 Session Name: HKG18-TR08 - Upstreaming SVE in QEMU Speaker: Alex Bennée,Richard Henderson Track: Enterprise ★ Session Summary ★ ARM's Scalable Vector Extensions is an innovative solution to processing highly data parallel workloads. While several out-of-tree attempts at implementing SVE support for QEMU existed, we took a fundamentally different approach to solving key challenges and therefore pursued a from-scratch QEMU SVE implementation in Linaro. Our strategic choice was driven by several factors. First as an ""upstream first"" organisation we were focused on a solution that would be readily accepted by the upstream project. This entailed doing our development in the open on the project mailing lists where early feedback and community consensus can be reached. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-tr08/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-tr08.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-tr08.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Enterprise 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

HKG18-113- Secure Data Path work with i.MX8M

Linaro

"Session ID: HKG18-113 Session Name: HKG18-113 - Secure Data Path work with i.MX8M Speaker: Cyrille Fleury Track: Digital Home ★ Session Summary ★ NXP presentation on Secure Data Path work with i.MX8M Soc. Demonstrate 4K PlayReady playback with Android 8.1 running on i.MX8M. Focus on security (MS SL3000 and Widevine level 1) --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-113/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-113.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-113.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Digital Home 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

HKG18-120 - Devicetree Schema Documentation and Validation

Linaro

"Session ID: HKG18-120 Session Name: HKG18-120 - Structured Documentation and Validation for Device Tree Speaker: Grant Likely Track: Kernel ★ Session Summary ★ Devicetree has become the dominant hardware configuration language used when building embedded systems. Projects using Devicetree now include Linux, U-Boot, Android, FreeBSD, and Zephyr. However, it is notoriously difficult to write correct Devicetree data files. The dtc tools perform limited tests for valid data, and there there is not yet a way to add validity test for specific hardware descriptions. Neither is there a good way to document requirements for specific bindings. Work is underway to solve these problems. This session will present a proposal for adding Devicetree schema files to the Devicetree toolchain that can be used to both validate data and produce usable documentation. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-120/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-120.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-120.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Kernel 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

HKG18-223 - Trusted FirmwareM: Trusted boot

Linaro

"Session ID: HKG18-223 Session Name: HKG18-223 - Trusted Firmware M : Trusted Boot Speaker: Tamas Ban Track: LITE ★ Session Summary ★ An overview of the trusted boot concept and firmware update on the ARMv8-M based platform and how MCUBoot acts as a BL2 bootloader for TF-M. Trusted Firmware M In October 2017, Arm announced the vision of Platform Security Architecture (PSA) - a common framework to allow everyone in the IoT ecosystem to move forward with stronger, scalable security and greater confidence. There are three key stages to the Platform Security Architecture: Analysis, Architecture and Implementation which are described at https://developer.arm.com/products/architecture/platform-security-architecture. _Trusted Firmware M, i.e. TF-M, is the Arm project to provide an open source reference implementation firmware that will conform to the PSA specification for M-Class devices. Early access to TF-M was released in December 2017 and it is being made public during Linaro Connect. The implementation should be considered a prototype until the PSA specifications reach release state and the code aligns._ --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-223/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-223.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-223.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: LITE 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961"

More from Linaro (20)

Deep Learning Neural Network Acceleration at the Edge - Andrea Gallo

Arm Architecture HPC Workshop Santa Clara 2018 - Kanta Vekaria

Huawei’s requirements for the ARM based HPC solution readiness - Joshua Mora

Bud17 113: distribution ci using qemu and open qa

OpenHPC Automation with Ansible - Renato Golin - Linaro Arm HPC Workshop 2018

HPC network stack on ARM - Linaro HPC Workshop 2018

It just keeps getting better - SUSE enablement for Arm - Linaro HPC Workshop ...

Intelligent Interconnect Architecture to Enable Next Generation HPC - Linaro ...

Yutaka Ishikawa - Post-K and Arm HPC Ecosystem - Linaro Arm HPC Workshop Sant...

Andrew J Younge - Vanguard Astra - Petascale Arm Platform for U.S. DOE/ASC Su...

HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline

HKG18-100K1 - George Grey: Opening Keynote

HKG18-318 - OpenAMP Workshop

HKG18-501 - EAS on Common Kernel 4.14 and getting (much) closer to mainline

HKG18-315 - Why the ecosystem is a wonderful thing, warts and all

HKG18- 115 - Partitioning ARM Systems with the Jailhouse Hypervisor

HKG18-TR08 - Upstreaming SVE in QEMU

HKG18-113- Secure Data Path work with i.MX8M

HKG18-120 - Devicetree Schema Documentation and Validation

HKG18-223 - Trusted FirmwareM: Trusted boot

Recently uploaded

PHP Frameworks: I want to break free (IPC Berlin 2024)

Ralf Eggert

In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development. This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

Knowledge engineering: from people to machines and back

Elena Simperl

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

Key Trends Shaping the Future of Infrastructure.pdf

Cheryl Hung

Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...

Thierry Lestable

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Jeffrey Haguewood

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams. Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

FIDO Alliance

Accelerate your Kubernetes clusters with Varnish Caching

Thijs Feryn

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

UiPathCommunity

💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™: See how to accelerate model training and optimize model performance with active learning Learn about the latest enhancements to out-of-the-box document processing – with little to no training required Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath. Speakers: 👨‍🏫 Andras Palfi, Senior Product Manager, UiPath 👩‍🏫 Lenka Dulovicova, Product Program Manager, UiPath

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

FIDO Alliance Osaka Seminar: Overview.pdf

FIDO Alliance

GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...

Sri Ambati

FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf

FIDO Alliance

Designing Great Products: The Power of Design and Leadership by Chief Designe...

Product School

DevOps and Testing slides at DASA Connect

Kari Kakkonen

IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx

Abida Shariff

Bits & Pixels using AI for Good.........

Alison B. Lowndes

Epistemic Interaction - tuning interfaces to provide information for AI support

Alan Dix

Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024 https://alandix.com/academic/papers/synergy2024-epistemic/ As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

BookNet Canada

The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more. Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/ Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.

Recently uploaded (20)

PHP Frameworks: I want to break free (IPC Berlin 2024)

The Art of the Pitch: WordPress Relationships and Sales

Knowledge engineering: from people to machines and back

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Key Trends Shaping the Future of Infrastructure.pdf

Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

Accelerate your Kubernetes clusters with Varnish Caching

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

Essentials of Automations: Optimizing FME Workflows with Parameters

FIDO Alliance Osaka Seminar: Overview.pdf

GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...

FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf

Designing Great Products: The Power of Design and Leadership by Chief Designe...

DevOps and Testing slides at DASA Connect

IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx

Bits & Pixels using AI for Good.........

Epistemic Interaction - tuning interfaces to provide information for AI support

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

BKK16-201 Play Ready OPTEE Integration with Secure Video Path lhg-1

1. Presented by Date Event BKK16-201 - PlayReady OPTEE Integration with Secure Video Path Zoltan Kuscsik, PhD BKK16-201 March 8, 2016 Linaro Connect BKK16

2. Overview The solution presented here integrates the following key components: ● W3C EME Working Draft ● Microsoft® PlayReady® DRM Porting Kit v3.0 ● OP-TEE OS ● OpenCDM/OpenCDMI ● Chromium v45

3. Updates since SFO15 ● Secure Data Path with OP TEE/Playready proof of concept on STM B2120 in progress. ● Secure Memory Allocator Framework (SMAF) integration - work in progress. ● EME with OP TEE on Hikey. We got Wayland/Chromium finally working! ● Moving to 4.5 Kernel and OP TEE master. ● AES OCDMI publicly available. ● Complete Playready TA implementation. We now support the Playready Interface For TEE (PRiTEE).

4. Supported boards STM B2120 96boards - HiKey

5. Encrypted Media Extensions - Buffer decrypt Browser CDM Load TA / Init SessionNew session request Send License Request Update License Key Update available keys Allocate and Secure buffer using SMAF Secure Buffer Decrypt Decrypt Buffer Encrypted Buf PlayReadyTA

6. EME SW stack - what can be open? Chromium Android Framework DRM HALOCDM Widevine PPAPI CDM PlayReady CDMI SMAF OPTEE Kernel Driver Linux Kernel ClearKey CDMI Closed Source Open Source Playready TA SMAF TA HDCP TA Policy Manager (?) ClearKey TA TEE OP TEE OS

7. Secure Memory Allocation Framework - CMA Allocator

8. Secure Memory Allocation Framework

9. Secure Data Path

10. Playready integration PlayReady has a CDMi interface as part of the PlayReady’ s DRM Licensed product. This CDMi component provided is very close to the one that is required by the open source OpenCDMi project. The Linaro secure media solution is an end-to-end DRM solution with a PlayReady license server. The client receives PlayReady encrypted content and communicates with a PlayReady server to request and receive a license and keys required to decrypt the content. The licence request is generated by PlayReady encapsulated by the CDMi, passed up to the to HTML5 application which initiates the the licence acquisition from the Playready license servers.

11. Open CDM Browser OCDM CDMI Service cdmi.h Interface for various key. mock.drm ClearKey/OpenSSL CDM PlayReady CDMI RPC ClearKey OP TEE The OpenCDM uses the platform’s native RPC system to separate the CDM from the browser. The project has two main components: 1) A browser specific CDM integration layer and the communication interfaces for the CDM. 2) A CDMi service implementation.

12. Implementation overview Chromium External Clear Key Linaro Clear Key CDM with SSL Linaro Clear Key CDM with OPTEE Linaro CDM with TEE Linaro CDM with software Playready Linaro CDM with HW Playready PPAPI CDM Yes Yes Yes Yes Yes Yes OpenCDM No Yes Yes Yes Yes Yes OP TEE and TrustZone® No No Yes Yes No Yes PlayReady, other DRM support No No No Yes Yes Yes Compatibility ARMv7, ARMv8, x86 ARMv7, ARMv8, x86 ARMv7, ARMv8 ARMv7, ARMv8 ARMv7, ARMV8 ARMv7, ARMV8 HiKey Yes Yes Yes Yes Yes Yes (in development) Dragonboard Yes Yes No No Yes No

13. OpenSSL ClearKey CDM ● Works both on X86 and ARM Linux. ● Allows the testing and exercising the Open CDM implementation: https://github.com/linaro-home/open-content-decryption-module-cdmi ● Upstreamed to OpenCDM project

14. OP TEE ClearKey CDMI ● Needs OPTEE enabled HW with Chromium running ● ClearKey AES128 decryption in OP TEE: https://github.com/kuscsik/optee-clearkey-cdmi ● Works with upstream OCDM

15. Links ● Playready: https://msdn.microsoft.com/en- us/library/windows/apps/mt429380.aspx ● OP TEE https://github.com/OP-TEE/optee_os ● Linaro OpenCDM https://github.com/kuscsik/linaro-cdmi

BKK16-201 Play Ready OPTEE Integration with Secure Video Path lhg-1

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (13)

Similar to BKK16-201 Play Ready OPTEE Integration with Secure Video Path lhg-1

Similar to BKK16-201 Play Ready OPTEE Integration with Secure Video Path lhg-1 (20)

More from Linaro

More from Linaro (20)

Recently uploaded

Recently uploaded (20)

BKK16-201 Play Ready OPTEE Integration with Secure Video Path lhg-1