SeCore: Continuous Extrospection with High Visibility on Multi-core ARM Platforms
Authors: 
Penghui Zhang, Bernard Ngabonziza, Haehyun Cho, Ziming Zhao, Adam Doupé, Gail-Joon AhnAuthors Info & Claims
Penghui Zhang, Bernard Ngabonziza, Haehyun Cho, Ziming Zhao, Adam Doupé, Gail-Joon AhnAuthors Info & ClaimsPages 161 - 163
Abstract
We present SeCore, which is a novel continuous extrospection system on multi-core ARM platform. SeCore leverages ARM TrustZone technology to keep one core in the secure world and assure the integrity of the static kernel data and code in the normal world. By breaking the original time-sharing paradigm of such systems, SeCore enables continuous coprocessor-like monitoring with high visibility into the rich execution environment on mobile and IoT platforms. By ensuring that secure tools execute on certain physical CPU cores, the system's attack surface is also significantly reduced.
References
[1]
Ahmed M Azab, Peng Ning, Jitesh Shah, Quan Chen, Rohan Bhutkar, Guruprasad Ganesh, Jia Ma, and Wenbo Shen. 2014. Hypervision Across Worlds: Real-time Kernel Protection from the ARM TrustZone Secure World Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security. ACM, 90--102.
[2]
Tal Garfinkel, Mendel Rosenblum, et almbox. 2003. A Virtual Machine Introspection Based Architecture for Intrusion Detection. Ndss, Vol. Vol. 3. 191--206.
[3]
Hojoon Lee, Hyungon Moon, Ingoo Heo, Daehee Jang, Jinsoo Jang, Kihwan Kim, Yunheung Paek, and Brent Kang. 2017. KI-Mon ARM: A Hardware-assisted Event-triggered Monitoring Platform for Mutable Kernel Object. IEEE Transactions on Dependable and Secure Computing (2017).
[4]
Hyungon Moon, Hojoon Lee, Jihoon Lee, Kihwan Kim, Yunheung Paek, and Brent Byunghoon Kang. 2012. Vigilare: toward snoop-based kernel integrity monitor Proceedings of the 2012 ACM conference on Computer and communications security. ACM, 28--37.
[5]
Nick L Petroni Jr and Michael Hicks. 2007. Automated detection of persistent kernel control-flow attacks Proceedings of the 14th ACM conference on Computer and communications security. ACM, 103--115.
[6]
Himanshu Raj, Stefan Saroiu, Alec Wolman, Ronald Aigner, Jeremiah Cox, Paul England, Chris Fenner, Kinshuman Kinshumann, Jork Loeser, Dennis Mattoon, et almbox. 2016. fTPM: A Software-Only Implementation of a TPM Chip USENIX Security Symposium. 841--856.
[7]
He Sun, Kun Sun, Yuewu Wang, Jiwu Jing, and Sushil Jajodia. 2014. Trustdump: Reliable memory acquisition on smartphones European Symposium on Research in Computer Security. Springer, 202--218.
Index Terms
- SeCore: Continuous Extrospection with High Visibility on Multi-core ARM Platforms
Recommendations
iCore: continuous and proactive extrospection on multi-core IoT devices
SAC '19: Proceedings of the 34th ACM/SIGAPP Symposium on Applied ComputingIn this paper, we present iCore, a novel continuous and proactive extrospection system with high visibility on IoT devices deploying multi-core ARM platforms. Dedicated cores named Isolated Cores are configured to stay in the TrustZone secure world upon ...
Flexible Multi-Core Platform for a Multiple-Format Video Decoder
This paper presents a new multi-core platform that can decode various video compression formats including MPEG-2, MPEG-4, AVS, and H.264/AVC. The developed multi-core platform consists of multiple media cores that are designed based on an application-...
Cronus: Fault-Isolated, Secure and High-Performance Heterogeneous Computing for Trusted Execution Environment
MICRO '22: Proceedings of the 55th Annual IEEE/ACM International Symposium on MicroarchitectureWith the trend of processing a large volume of sensitive data on PaaS services (e.g., DNN training), a TEE architecture that supports general heterogeneous accelerators, enables spatial sharing on one accelerator, and enforces strong isolation across ...
Comments
Information & Contributors
Information
Published In
March 2018
401 pages
ISBN:9781450356329
DOI:10.1145/3176258
- General Chairs:
- Ziming Zhao,
- Gail-Joon Ahn,
- Program Chairs:
- Ram Krishnan,
- Gabriel Ghinita
Copyright © 2018 Owner/Author.
Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.
Sponsors
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 13 March 2018
Check for updates
Author Tags
Qualifiers
- Poster
Conference
CODASPY '18
Sponsor:
CODASPY '18: Eighth ACM Conference on Data and Application Security and Privacy
March 19 - 21, 2018
AZ, Tempe, USA
Acceptance Rates
CODASPY '18 Paper Acceptance Rate 23 of 110 submissions, 21%;
Overall Acceptance Rate 149 of 789 submissions, 19%
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- 0Total Citations
- 123Total Downloads
- Downloads (Last 12 months)2
- Downloads (Last 6 weeks)1
Reflects downloads up to 17 Oct 2024
Other Metrics
Citations
View Options
Get Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in