Abstract
Hardware security components provide a Root-of-Trust (RoT) environment for critical system operations and bring in a substantially high level of security guarantee since it is protected from various software-based vulnerabilities and side channel attacks. There are a few state-of-art hardware security components which are prevalent in modern digital devices such as crypto engines, key management cores, and random number generators among others. However, most hardware security components are not exposed to end-user applications and their usage and benefits are severely limited by the policies imposed by device vendors. The reason behind the strict restriction is to reduce the attack surface and harden the hardware security components. However, application is the most vulnerable attack surface and requires utmost protection. Hence, it is imperative to provide a secure mechanism through which applications can fully leverage the hardware security components. In this paper, we propose the Lightweight Hardware Security Arbitrator (LHSA) which opens up a path for applications to fully utilize hardware security components without jeopardizing hardware security hardening. LHSA creates virtualized hardware security components for each application and applications can utilize the full hardware security functionalities in a securely isolated environment. We have built a prototype using a commodity Windows platform on ARM SoC (System-on-Chip) environment and we demonstrate its practicality and security benefits.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
ARM Limited: GlobalPlatform TEE & ARM TrustZone technology: Building security into your platform. https://pdfs.semanticscholar.org/presentation/7b94/63d58a2d4ec9724c5933419be6f08754ce86.pdf
Brasser, F., Gens, D., Jauernig, P., Sadeghi, A., Stapf, E.: SANCTUARY: ARMing TrustZone with User-space Enclaves. In: Network and Distributed System Security Symposium, February 2019
Microsoft. Isolated User Mode (IUM) Processes. https://docs.microsoft.com/en-us/windows/desktop/procthread/isolated-user-mode-ium-processes
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Switzerland AG
About this paper
Cite this paper
Kim, Y. (2021). POSTER: LHSA: Lightweight Hardware Security Arbitrator. In: Zhou, J., et al. Applied Cryptography and Network Security Workshops. ACNS 2021. Lecture Notes in Computer Science(), vol 12809. Springer, Cham. https://doi.org/10.1007/978-3-030-81645-2_28
Download citation
DOI: https://doi.org/10.1007/978-3-030-81645-2_28
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-81644-5
Online ISBN: 978-3-030-81645-2
eBook Packages: Computer ScienceComputer Science (R0)