[Cryptech Tech] ARM trust zone

Peter Gutmann pgut001 at cs.auckland.ac.nz
Sat Feb 21 02:35:12 UTC 2015

Previous message: [Cryptech Tech] ARM trust zone
Next message: [Cryptech Tech] ARM trust zone
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hannes Tschofenig <hannes.tschofenig at gmx.net> writes:

>Of course, there is also the ARM TrustZone page:
>http://www.arm.com/products/processors/technologies/trustzone/index.php

That's the TrustZone that's secure by executive fiat, not because it's
actually secure, see e.g:

https://www.cs.auckland.ac.nz/~pgut001/pubs/crypto_wont_help.pdf

The hack described in there compromised the (insecure) TrustZone, then
attacked the supposedly-insecure rest of the system from inside the security
perimeter.  It's one of those neat "the calls are coming from *inside the
house*" type of attacks :-).

Peter.

Previous message: [Cryptech Tech] ARM trust zone
Next message: [Cryptech Tech] ARM trust zone
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Tech mailing list