Kuniyasu Suzaki, profile picture
Uploaded byKuniyasu Suzaki
911 views

RISC-V-Day-Tokyo2018-suzaki

The document discusses Trusted Execution Environments (TEEs) and running the Open Portable Trusted Execution Environment (OP-TEE) trusted operating system on RISC-V. It provides an overview of TEEs, describes OP-TEE and the requirements to implement it on RISC-V, including developing a boot sequence, kernel driver, and libraries. The document also compares TEE implementations on ARM TrustZone and Intel SGX and covers memory mapping when running OP-TEE on ARM-based boards.

Embed presentation

Downloaded 37 times
TEE to Run Trusted OS on RISC-V and Related Technologies 1 National Institute of Advanced Industrial Science and Technology(AIST) Kuniyasu Suzaki, Akira Tsukamoto
Contents • What is TEE? – RISC-V TEE • Trusted OS – “OP-TEE” – Requirement to implement OP-TEE 2 The difference from Micro51 workshop. Software view (RISC-V day Tokyo), Hardware view (Micro51 workshop) Slides will be opened at https://www.slideshare.net/suzaki
HIEE: Hardware-assisted Isolated Execution Environments* • HIEE is used for important process which is independent of OS. • Current CPU has HIEE. – X86 SMM: System Management Mode • Used by BIOS/UEFI. – Intel’s ME: Management Engine. • Run MINIX. Used for remote power control. – Intel SGX: Software Guard execution – ARM Trust Zone 3 * F.Zhang and H.Zhang, SoK:A Study of Using Hardware-assisted Isolated Execution Environments for Security[HASP16] They are not programmable for a user. They are programmable for a user. They are used for TEE.
What is TEE? • TEE: Trusted Execution Environment. – TEE separates computing world into “normal” and “secure”. • Secure world is used to run a critical code (e.g., authentication, DRM, etc). – GlobalPlatform defines TEE specification. • https://globalplatform.org/technical-committees/trusted-execution-environment-tee-committee/ 4 CPU TEE Secure World Normal World App Normal OS
Privileges for TEE • Global Platform's TEE specification assumes plural privileges on both worlds to run application on a OS. – Normal world runs normal applications on a normal OS. – Secure world runs trusted applications (TAs) on a trusted OS. • ARM Trust Zone offers same privileges to normal and secure world. • Intel SGX has only one privilege (enclave). – Enclave is different from Ring Architecture. 5 CPU Trusted OS Secure World Normal World App Normal OS (e.g., Linux) Trusted Application (TA) POSIX APIGP TEE API
TEE projects on RISC-V • Sanctum [MIT project, USENIX Sec’16] • KeyStone [UCB project] – https://keystone-enclave.org/ • MultiZone [Hex-Five product] – https://hex-five.com/ • TEE WG of RISC-V Foundation 6 Intel SGX type One special privilege (Enclave) ARM Trust Zone type plural privileges easy to implement GlobalPlatform style Trusted OS
ARM Trusted OS on ARM Trust Zone • GlobalPlatform model 7 Secure world Normal world Normal Applications Normal OS NIC Core Trusted OS Trusted Applications (TA) Core Secure Mode Hard eMMCUART Exception Level EL0: User EL1: Privilege EL2: Hypervisor EL3: Secure SMC (Secure Monitor Call) instruction Memory Static allocate Dynamic allocate
Boot Sequence on ARM Trust Zone • BL: Boot Loader • EL: Exception Level 8 Power on BL1: BootROM BL2: Trusted Boot Firmware Secure World Normal World BL31: Secure Monitor BL32: Trusted OS BL33: Normal OS EL3:Secure EL2:Hypervisor EL1:Priviledge EL0:User EL3:Secure EL2:Hypervisor EL1:Priviledge EL0:User
Trusted OS • Trusted OS is not a normal OS – Trusted OS is TCB (Trusted Computing Base). It must be secure (small). – No POSIX API, No dynamic link library • TA becomes a static linked binary. • Trusted OS needs the help of normal OS – Because Trusted OS has no File System, no device driver (except some special devices, e.g., UART) • When a TA want to save a data, the data is encrypted and saved on FS of normal OS. 9
Trusted OS • Open Source Trusted OS – OP-TEE (Linaro) https://github.com/OP-TEE – Open-TEE (Aalto University[TrustCom15]) https://open-tee.github.io/ – Trusty (Google) https://source.android.com/security/trusty/index.html – SierraTEE (Sierra) https://www.sierraware.com/open-source-ARM-TrustZone.html • Enterprise Trusted OS – Apple’s Secure Enclave – Qualcomm’s QSEE – Samsung’s Knox https://www.samsungknox.com/en – Trastonic Kinibi and MobiCore 10
How to run a TA on OP-TEE 11 Secure World Normal World Secure Monitor Exception Level EL0: User EL1: Privilege EL2: Hypervisor EL3: Secure Linux with op-tee driver TA with libutee.a OP-TEE (signature check) (dispatch by UUID) TA-Client TEE-Supplicant /dev/tee0 /dev/teeprev0 Load a TA Use a TA Helper of TAsignatureMajor Roll • TA-Client loads a TA on OP-TEE – TA needs a signature to load on OP-TEE – TA has a UUID to communicate with TA- Client and TEE-Supplicant • TA-Client sends a request to TA • TA replies an answer to TA-Client • TA sends a request to TEE- Supplicant (e.g., to save an encrypted data on File System) TEE internal API only (No POSIX sys call) TA libtee.so
Memory Map of OP-TEE • ARM Hikey Board 2GB • Software size: Our experience – Secure world • Secure Monitor 33KB • OP-TEE 281KB • TA 1,200KB – Normal World (on Linux) • TA-Client 17KB • TEE-Supplicant 197KB 12 0x7FFFFFFF (2GB) OP-TEE & TA 0x7F000000 16MB 0x7EC0000 Shared Memory 4 MB 0x7E80000 Linux Kernel with SMC driver 4 MB 0x7E00000 8 MB Secure Data Path Buffer Reserved Secure World Normal World
OP-TEE on RISC-V using seL4 • Rahul Mahadev’s Google Summer of Code • http://mahadevrahul.blogspot.com/ – The Trust Zone features and secure monitor are implemented as a seL4 library. – OP-TEE is paravirtualized, all calls referencing ARM Trusted Firmware and secure monitor are replaced with new calls. 13 seL4 Rich OS (Linux) Library to emulate Trust Zone VMM Paravirtualized OP-TEE TAApp
Conclusions • My talk is software view of TEE • When we implement OP-TEE on RISC-V, we must develop – Boot sequence: Trusted Boot Firmware, Secure Monitor – Linux kernel driver – Libraries (libutee.a for TA and libtee.so for Linux Apps) – Linux application to assist TA (TEE-supplicant) 14 See Micro51 RISC-V workshop for hardware view Slide of RISC-V Day Tokyo 2018 and Micro51 RISC-V workshop will be opened at https://www.slideshare.net/suzaki

More Related Content

PDF
Hardware-assisted Isolated Execution Environment to run trusted OS and applic...
byKuniyasu Suzaki
 
PDF
Trusted firmware deep_dive_v1.0_
byLinaro
 
PDF
LCU14 302- How to port OP-TEE to another platform
byLinaro
 
PDF
BeagleBone Black: Platform Bring-Up with Upstream Components
byGlobalLogic Ukraine
 
PPTX
Ceph Tech Talk -- Ceph Benchmarking Tool
byCeph Community
 
PDF
Qemu Pcie
byThe Linux Foundation
 
PDF
Linux KVM のコードを追いかけてみよう
byTsuyoshi OZAWA
 
PDF
Linux Networking Explained
byThomas Graf
 
Hardware-assisted Isolated Execution Environment to run trusted OS and applic...
byKuniyasu Suzaki
 
Trusted firmware deep_dive_v1.0_
byLinaro
 
LCU14 302- How to port OP-TEE to another platform
byLinaro
 
BeagleBone Black: Platform Bring-Up with Upstream Components
byGlobalLogic Ukraine
 
Ceph Tech Talk -- Ceph Benchmarking Tool
byCeph Community
 
Qemu Pcie
byThe Linux Foundation
 
Linux KVM のコードを追いかけてみよう
byTsuyoshi OZAWA
 
Linux Networking Explained
byThomas Graf
 

What's hot

PDF
BKK16-110 A Gentle Introduction to Trusted Execution and OP-TEE
byLinaro
 
PDF
LCU13: An Introduction to ARM Trusted Firmware
byLinaro
 
PPSX
LECT 1: ARM PROCESSORS
byDr.YNM
 
ODP
SystemV vs systemd
byAll Things Open
 
PDF
The Complete MariaDB Server tutorial
byColin Charles
 
PPTX
Linux Network Stack
byAdrien Mahieux
 
PPTX
Static partitioning virtualization on RISC-V
byRISC-V International
 
PDF
QEMU Disk IO Which performs Better: Native or threads?
byPradeep Kumar
 
PPT
Choosing the right processor
byPantech ProLabs India Pvt Ltd
 
PDF
ARM Trusted FirmwareのBL31を単体で使う!
byMr. Vengineer
 
PDF
Challenges in Using UVM at SoC Level
byDVClub
 
PDF
Embedded Linux Kernel - Build your custom kernel
byEmertxe Information Technologies Pvt Ltd
 
PDF
Boost UDP Transaction Performance
byLF Events
 
PDF
Xvisor: embedded and lightweight hypervisor
byNational Cheng Kung University
 
PDF
Introduction to arm architecture
byZakaria Gomaa
 
PPTX
Slab Allocator in Linux Kernel
byAdrian Huang
 
PPTX
UVM Driver sequencer handshaking
byHARINATH REDDY
 
PPTX
Linux scheduling and input and output
bySanidhya Chugh
 
PPTX
Linux Initialization Process (2)
byshimosawa
 
PDF
Linux network stack
byTakuya ASADA
 
BKK16-110 A Gentle Introduction to Trusted Execution and OP-TEE
byLinaro
 
LCU13: An Introduction to ARM Trusted Firmware
byLinaro
 
LECT 1: ARM PROCESSORS
byDr.YNM
 
SystemV vs systemd
byAll Things Open
 
The Complete MariaDB Server tutorial
byColin Charles
 
Linux Network Stack
byAdrien Mahieux
 
Static partitioning virtualization on RISC-V
byRISC-V International
 
QEMU Disk IO Which performs Better: Native or threads?
byPradeep Kumar
 
Choosing the right processor
byPantech ProLabs India Pvt Ltd
 
ARM Trusted FirmwareのBL31を単体で使う!
byMr. Vengineer
 
Challenges in Using UVM at SoC Level
byDVClub
 
Embedded Linux Kernel - Build your custom kernel
byEmertxe Information Technologies Pvt Ltd
 
Boost UDP Transaction Performance
byLF Events
 
Xvisor: embedded and lightweight hypervisor
byNational Cheng Kung University
 
Introduction to arm architecture
byZakaria Gomaa
 
Slab Allocator in Linux Kernel
byAdrian Huang
 
UVM Driver sequencer handshaking
byHARINATH REDDY
 
Linux scheduling and input and output
bySanidhya Chugh
 
Linux Initialization Process (2)
byshimosawa
 
Linux network stack
byTakuya ASADA
 

Similar to RISC-V-Day-Tokyo2018-suzaki

PDF
HKG15-311: OP-TEE for Beginners and Porting Review
byLinaro
 
PDF
LCA14: LCA14-502: The way to a generic TrustZone® solution
byLinaro
 
PDF
Secure initialization of Trusted Execution Environments: When Secure Boot fal...
byRiscure
 
ODP
Introduction to Optee (26 may 2016)
byYannick Gicquel
 
PDF
LAS16 111 - Raspberry pi3, op-tee and jtag debugging
by96Boards
 
PDF
SFO15-200: Linux kernel generic TEE driver
byLinaro
 
PDF
TEE - kernel support is now upstream. What this means for open source security
byLinaro
 
PDF
LAS16-111: Easing Access to ARM TrustZone – OP-TEE and Raspberry Pi 3
byLinaro
 
PDF
Lcu14 306 - OP-TEE Future Enhancements
byLinaro
 
PDF
LCU14 500 ARM Trusted Firmware
byLinaro
 
PDF
Standardizing the tee with global platform and RISC-V
byRISC-V International
 
PDF
LCU14-103: How to create and run Trusted Applications on OP-TEE
byLinaro
 
PDF
Introduction of AArch64 TrustZone and OPTEE
byChiawei Wang
 
PDF
BKK16-110~---3892hnfi2r8ru94jofmcw8ujd.pdf
bysatyabratmallaBujarb
 
PPTX
Review of Hardware based solutions for trusted cloud computing.pptx
byssusere142fe
 
PDF
Labri 2021-invited-talk
byvschiavoni
 
PDF
EuskalHack 2017 - Secure initialization of TEEs: when secure boot falls short
byCristofaro Mune
 
PDF
Securing the Internet of Things - Hank Chavers
byWithTheBest
 
PDF
Attack your Trusted Core
byDi Shen
 
PPTX
Security for io t apr 29th mentor embedded hangout
bymentoresd
 
HKG15-311: OP-TEE for Beginners and Porting Review
byLinaro
 
LCA14: LCA14-502: The way to a generic TrustZone® solution
byLinaro
 
Secure initialization of Trusted Execution Environments: When Secure Boot fal...
byRiscure
 
Introduction to Optee (26 may 2016)
byYannick Gicquel
 
LAS16 111 - Raspberry pi3, op-tee and jtag debugging
by96Boards
 
SFO15-200: Linux kernel generic TEE driver
byLinaro
 
TEE - kernel support is now upstream. What this means for open source security
byLinaro
 
LAS16-111: Easing Access to ARM TrustZone – OP-TEE and Raspberry Pi 3
byLinaro
 
Lcu14 306 - OP-TEE Future Enhancements
byLinaro
 
LCU14 500 ARM Trusted Firmware
byLinaro
 
Standardizing the tee with global platform and RISC-V
byRISC-V International
 
LCU14-103: How to create and run Trusted Applications on OP-TEE
byLinaro
 
Introduction of AArch64 TrustZone and OPTEE
byChiawei Wang
 
BKK16-110~---3892hnfi2r8ru94jofmcw8ujd.pdf
bysatyabratmallaBujarb
 
Review of Hardware based solutions for trusted cloud computing.pptx
byssusere142fe
 
Labri 2021-invited-talk
byvschiavoni
 
EuskalHack 2017 - Secure initialization of TEEs: when secure boot falls short
byCristofaro Mune
 
Securing the Internet of Things - Hank Chavers
byWithTheBest
 
Attack your Trusted Core
byDi Shen
 
Security for io t apr 29th mentor embedded hangout
bymentoresd
 

More from Kuniyasu Suzaki

PDF
TEE (Trusted Execution Environment)は第二の仮想化技術になるか?
byKuniyasu Suzaki
 
PDF
仮想化技術によるマルウェア対策とその問題点
byKuniyasu Suzaki
 
PDF
RISC-Vのセキュリティ技術(TEE, Root of Trust, Remote Attestation)
byKuniyasu Suzaki
 
PDF
3種類のTEE比較(Intel SGX, ARM TrustZone, RISC-V Keystone)
byKuniyasu Suzaki
 
PDF
遠隔デバイスとの信頼を築くための技術とその標準(TEEP RATS)
byKuniyasu Suzaki
 
PDF
OSセキュリティチュートリアル
byKuniyasu Suzaki
 
PDF
IETF111 RATS: Remote Attestation ProcedureS 報告
byKuniyasu Suzaki
 
PDF
Kernel Memory Protection by an Insertable Hypervisor which has VM Introspec...
byKuniyasu Suzaki
 
PDF
ACSAC2020 "Return-Oriented IoT" by Kuniyasu Suzaki
byKuniyasu Suzaki
 
PDF
Bitvisorをベースとした既存Windowsのドライバメモリ保護
byKuniyasu Suzaki
 
PDF
Nested Virtual Machines and Proxies
byKuniyasu Suzaki
 
PDF
”Bare-Metal Container" presented at HPCC2016
byKuniyasu Suzaki
 
PDF
Slide used at ACM-SAC 2014 by Suzaki
byKuniyasu Suzaki
 
PDF
BMC: Bare Metal Container @Open Source Summit Japan 2017
byKuniyasu Suzaki
 
PDF
Slide presented at FIT 2021 Top Conference (Reboot Oriented IoT, ACSAC2021)
byKuniyasu Suzaki
 
PDF
Io t security-suzki-20170224
byKuniyasu Suzaki
 
PDF
USENIX NSDI17 Memory Disaggregation
byKuniyasu Suzaki
 
PDF
Security on cloud storage and IaaS (NSC: Taiwan - JST: Japan workshop)
byKuniyasu Suzaki
 
PDF
Report for S4x14 (SCADA Security Scientific Symposium 2014)
byKuniyasu Suzaki
 
PDF
Technology Used in Virtual Machine (Jan 2008)
byKuniyasu Suzaki
 
TEE (Trusted Execution Environment)は第二の仮想化技術になるか?
byKuniyasu Suzaki
 
仮想化技術によるマルウェア対策とその問題点
byKuniyasu Suzaki
 
RISC-Vのセキュリティ技術(TEE, Root of Trust, Remote Attestation)
byKuniyasu Suzaki
 
3種類のTEE比較(Intel SGX, ARM TrustZone, RISC-V Keystone)
byKuniyasu Suzaki
 
遠隔デバイスとの信頼を築くための技術とその標準(TEEP RATS)
byKuniyasu Suzaki
 
OSセキュリティチュートリアル
byKuniyasu Suzaki
 
IETF111 RATS: Remote Attestation ProcedureS 報告
byKuniyasu Suzaki
 
Kernel Memory Protection by an Insertable Hypervisor which has VM Introspec...
byKuniyasu Suzaki
 
ACSAC2020 "Return-Oriented IoT" by Kuniyasu Suzaki
byKuniyasu Suzaki
 
Bitvisorをベースとした既存Windowsのドライバメモリ保護
byKuniyasu Suzaki
 
Nested Virtual Machines and Proxies
byKuniyasu Suzaki
 
”Bare-Metal Container" presented at HPCC2016
byKuniyasu Suzaki
 
Slide used at ACM-SAC 2014 by Suzaki
byKuniyasu Suzaki
 
BMC: Bare Metal Container @Open Source Summit Japan 2017
byKuniyasu Suzaki
 
Slide presented at FIT 2021 Top Conference (Reboot Oriented IoT, ACSAC2021)
byKuniyasu Suzaki
 
Io t security-suzki-20170224
byKuniyasu Suzaki
 
USENIX NSDI17 Memory Disaggregation
byKuniyasu Suzaki
 
Security on cloud storage and IaaS (NSC: Taiwan - JST: Japan workshop)
byKuniyasu Suzaki
 
Report for S4x14 (SCADA Security Scientific Symposium 2014)
byKuniyasu Suzaki
 
Technology Used in Virtual Machine (Jan 2008)
byKuniyasu Suzaki
 

Recently uploaded

PDF
Guided Substation Engineering with CoMPAS: Simplifying IEC 61850
byDanBrown980551
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PPTX
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
PDF
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
PPTX
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PDF
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
PDF
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PDF
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PDF
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
PDF
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
PDF
AI Technology important knowledge ......
byutkarshj2007
 
PPTX
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
PDF
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
PDF
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 
Guided Substation Engineering with CoMPAS: Simplifying IEC 61850
byDanBrown980551
 
The year in review - MarvelClient in 2025
bypanagenda
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
AI Technology important knowledge ......
byutkarshj2007
 
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 

RISC-V-Day-Tokyo2018-suzaki

  • 1.
    TEE to RunTrusted OS on RISC-V and Related Technologies 1 National Institute of Advanced Industrial Science and Technology(AIST) Kuniyasu Suzaki, Akira Tsukamoto
  • 2.
    Contents • What isTEE? – RISC-V TEE • Trusted OS – “OP-TEE” – Requirement to implement OP-TEE 2 The difference from Micro51 workshop. Software view (RISC-V day Tokyo), Hardware view (Micro51 workshop) Slides will be opened at https://www.slideshare.net/suzaki
  • 3.
    HIEE: Hardware-assisted IsolatedExecution Environments* • HIEE is used for important process which is independent of OS. • Current CPU has HIEE. – X86 SMM: System Management Mode • Used by BIOS/UEFI. – Intel’s ME: Management Engine. • Run MINIX. Used for remote power control. – Intel SGX: Software Guard execution – ARM Trust Zone 3 * F.Zhang and H.Zhang, SoK:A Study of Using Hardware-assisted Isolated Execution Environments for Security[HASP16] They are not programmable for a user. They are programmable for a user. They are used for TEE.
  • 4.
    What is TEE? •TEE: Trusted Execution Environment. – TEE separates computing world into “normal” and “secure”. • Secure world is used to run a critical code (e.g., authentication, DRM, etc). – GlobalPlatform defines TEE specification. • https://globalplatform.org/technical-committees/trusted-execution-environment-tee-committee/ 4 CPU TEE Secure World Normal World App Normal OS
  • 5.
    Privileges for TEE •Global Platform's TEE specification assumes plural privileges on both worlds to run application on a OS. – Normal world runs normal applications on a normal OS. – Secure world runs trusted applications (TAs) on a trusted OS. • ARM Trust Zone offers same privileges to normal and secure world. • Intel SGX has only one privilege (enclave). – Enclave is different from Ring Architecture. 5 CPU Trusted OS Secure World Normal World App Normal OS (e.g., Linux) Trusted Application (TA) POSIX APIGP TEE API
  • 6.
    TEE projects onRISC-V • Sanctum [MIT project, USENIX Sec’16] • KeyStone [UCB project] – https://keystone-enclave.org/ • MultiZone [Hex-Five product] – https://hex-five.com/ • TEE WG of RISC-V Foundation 6 Intel SGX type One special privilege (Enclave) ARM Trust Zone type plural privileges easy to implement GlobalPlatform style Trusted OS
  • 7.
    ARM Trusted OS onARM Trust Zone • GlobalPlatform model 7 Secure world Normal world Normal Applications Normal OS NIC Core Trusted OS Trusted Applications (TA) Core Secure Mode Hard eMMCUART Exception Level EL0: User EL1: Privilege EL2: Hypervisor EL3: Secure SMC (Secure Monitor Call) instruction Memory Static allocate Dynamic allocate
  • 8.
    Boot Sequence onARM Trust Zone • BL: Boot Loader • EL: Exception Level 8 Power on BL1: BootROM BL2: Trusted Boot Firmware Secure World Normal World BL31: Secure Monitor BL32: Trusted OS BL33: Normal OS EL3:Secure EL2:Hypervisor EL1:Priviledge EL0:User EL3:Secure EL2:Hypervisor EL1:Priviledge EL0:User
  • 9.
    Trusted OS • TrustedOS is not a normal OS – Trusted OS is TCB (Trusted Computing Base). It must be secure (small). – No POSIX API, No dynamic link library • TA becomes a static linked binary. • Trusted OS needs the help of normal OS – Because Trusted OS has no File System, no device driver (except some special devices, e.g., UART) • When a TA want to save a data, the data is encrypted and saved on FS of normal OS. 9
  • 10.
    Trusted OS • OpenSource Trusted OS – OP-TEE (Linaro) https://github.com/OP-TEE – Open-TEE (Aalto University[TrustCom15]) https://open-tee.github.io/ – Trusty (Google) https://source.android.com/security/trusty/index.html – SierraTEE (Sierra) https://www.sierraware.com/open-source-ARM-TrustZone.html • Enterprise Trusted OS – Apple’s Secure Enclave – Qualcomm’s QSEE – Samsung’s Knox https://www.samsungknox.com/en – Trastonic Kinibi and MobiCore 10
  • 11.
    How to runa TA on OP-TEE 11 Secure World Normal World Secure Monitor Exception Level EL0: User EL1: Privilege EL2: Hypervisor EL3: Secure Linux with op-tee driver TA with libutee.a OP-TEE (signature check) (dispatch by UUID) TA-Client TEE-Supplicant /dev/tee0 /dev/teeprev0 Load a TA Use a TA Helper of TAsignatureMajor Roll • TA-Client loads a TA on OP-TEE – TA needs a signature to load on OP-TEE – TA has a UUID to communicate with TA- Client and TEE-Supplicant • TA-Client sends a request to TA • TA replies an answer to TA-Client • TA sends a request to TEE- Supplicant (e.g., to save an encrypted data on File System) TEE internal API only (No POSIX sys call) TA libtee.so
  • 12.
    Memory Map ofOP-TEE • ARM Hikey Board 2GB • Software size: Our experience – Secure world • Secure Monitor 33KB • OP-TEE 281KB • TA 1,200KB – Normal World (on Linux) • TA-Client 17KB • TEE-Supplicant 197KB 12 0x7FFFFFFF (2GB) OP-TEE & TA 0x7F000000 16MB 0x7EC0000 Shared Memory 4 MB 0x7E80000 Linux Kernel with SMC driver 4 MB 0x7E00000 8 MB Secure Data Path Buffer Reserved Secure World Normal World
  • 13.
    OP-TEE on RISC-Vusing seL4 • Rahul Mahadev’s Google Summer of Code • http://mahadevrahul.blogspot.com/ – The Trust Zone features and secure monitor are implemented as a seL4 library. – OP-TEE is paravirtualized, all calls referencing ARM Trusted Firmware and secure monitor are replaced with new calls. 13 seL4 Rich OS (Linux) Library to emulate Trust Zone VMM Paravirtualized OP-TEE TAApp
  • 14.
    Conclusions • My talkis software view of TEE • When we implement OP-TEE on RISC-V, we must develop – Boot sequence: Trusted Boot Firmware, Secure Monitor – Linux kernel driver – Libraries (libutee.a for TA and libtee.so for Linux Apps) – Linux application to assist TA (TEE-supplicant) 14 See Micro51 RISC-V workshop for hardware view Slide of RISC-V Day Tokyo 2018 and Micro51 RISC-V workshop will be opened at https://www.slideshare.net/suzaki