[Cryptech Tech] ARM trust zone

Joachim Strömbergson joachim at secworks.se
Thu Feb 19 07:30:58 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Aloha!

Randy Bush wrote:
> http://genode.org/documentation/articles/trustzone

TrustZone is a nice implementation of HW supprted separation. I've been
working with TZ and TEEs (Trusted Execution Environments) the last 6+
months.

One thing to note is that in commonly used TEEs, the resources are
limited and thus the hypervisor/RT-system running the processes (trusted
applications - TAs or trustlets) often provides little in terms of inter
process security. Thus, if you can 0wn a trustlet you can fairly easily
get to sensitive stuff in other trustlets.

- -- 
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
 Joachim Strömbergson          Secworks AB          joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=IoeA
-----END PGP SIGNATURE-----


More information about the Tech mailing list