南方科技大学知识苑(SUSTech KC): TEESec: Pre-Silicon Vulnerability Discovery for Trusted Execution Environments

题名	TEESec: Pre-Silicon Vulnerability Discovery for Trusted Execution Environments
作者	Ghaniyoun，Moein 1; Barber，Kristin 2; Xiao，Yuan 3; Zhang，Yinqian4 ; Teodorescu，Radu 1
DOI	10.1145/3579371.3589070
发表日期	2023-06-17
会议名称	50th Annual International Symposium on Computer Architecture (ISCA)
ISSN	1063-6897
会议录名称	Proceedings - International Symposium on Computer Architecture
页码	489-503
会议日期	JUN 17-21, 2023
会议地点	null,Orlando,FL
出版地	1601 Broadway, 10th Floor, NEW YORK, NY, UNITED STATES
出版者	ASSOC COMPUTING MACHINERY
摘要	Trusted execution environments (TEE) are CPU hardware extensions that provide security guarantees for applications running on untrusted operating systems. The security of TEEs is threatened by a variety of microarchitectural vulnerabilities, which have led to a large number of demonstrated attacks. While various solutions for verifying the correctness and security of TEE designs have been proposed, they generally do not extend to jointly verifying the security of the underlying microarchitecture. This paper presents TEESec, the first pre-silicon framework for discovering microarchitectural vulnerabilities in the context of trusted execution environments. TEESec is designed to jointly and systematically test the TEE and underlying microarchitecture against data and metadata leakage across isolation boundaries. We implement TEESec in the Chipyard framework and evaluate it on two open-source RISC-V out-of-order processors running the Keystone TEE. Using TEESec we uncover 10 distinct vulnerabilities in these processors that violate TEE security principles and could lead to leakage of enclave secrets.
关键词	Security Trusted Execution Environments Verification
学校署名	其他
语种	英语
相关链接	[Scopus记录]
收录类别	CPCI-S ; EI
资助项目	Air Force Research Laboratory under the Assured and Trusted Microelectronics Solutions award[FA8650-20-C-1719]
WOS研究方向	Computer Science
WOS类目	Computer Science, Hardware & Architecture ; Computer Science, Theory & Methods
WOS记录号	WOS:001098723900035
EI入藏号	20233514648468
EI主题词	Computer architecture
EI分类号	Nonferrous Metals and Alloys excluding Alkali and Alkaline Earth Metals:549.3
Scopus记录号	2-s2.0-85168881216
来源库	Scopus
引用统计	被引频次[WOS]：0
成果类型	会议论文
条目标识符	http://sustech.caswiz.com/handle/2SGJ60CL/559931
专题	南方科技大学
作者单位	1.The Ohio State University,Columbus,United States 2.Google,Mountain View,United States 3.Intel,Santa Clara,United States 4.SUSTech,Shenzhen,China
推荐引用方式 GB/T 7714	Ghaniyoun，Moein,Barber，Kristin,Xiao，Yuan,et al. TEESec: Pre-Silicon Vulnerability Discovery for Trusted Execution Environments[C]. 1601 Broadway, 10th Floor, NEW YORK, NY, UNITED STATES:ASSOC COMPUTING MACHINERY,2023:489-503.