Skip to main content
SpringerLink
Log in

Secure Trusted Operating System Based on Microkernel Architecture

  • Conference paper
  • First Online:
Proceedings of Sixth International Congress on Information and Communication Technology

Part of the book series: Lecture Notes in Networks and Systems ((LNNS,volume 216))

  • 1222 Accesses

Abstract

Currently, trusted execution environment technologies are widely used to enhance the security of connected devices such as mobile phones and tablets. The trusted operating system is the core component of a trusted execution environment solution, but the trusted operating system itself may face security challenges. The main reason is that the trusted operating system needs to provide different services for different application scenarios, which makes its function more complicated and further increases the code size. In most trusted execution environment solutions, the trusted operating system is based on Monolithic kernel architecture. This will inevitably face security issues such as software defects and lack of isolation between components. In this paper, we propose a scheme for design secure trusted operating system based on a microkernel architecture. In our scheme, we take the modified take-grant model as the system security model and design a discretionary access control mechanism based on the capability system. We implemented our secure trusted operating system on the i.MX6Q platform. The test results show that it works properly and meets the requirements of the GP TEE specifications.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 189.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 249.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Ekberg JE, Kostiainen K, Asokan N (2013) Trusted execution environments on mobile devices. In: Proceedings of the 2013 ACM SIGSAC conference on computer and communications security. ACM, pp 1497–1498

    Google Scholar 

  2. GlobalPlatform (2018) TEE System Architecture, version 1.0 [EB/OL]. https://globalplatform.org/specs-library/?filter-committee=tee

  3. Arm A (2009) Security technology-building a secure system using TrustZone technology. ARM Technical White Paper

    Google Scholar 

  4. Sabt M, Achemlal M, Bouabdallah A (2015) Trusted execution environment: what it is, and what it is not. In: 14th IEEE international conference on trust, security and privacy in computing and communications

    Google Scholar 

  5. GlobalPlatform (2018) TEE Internal Core API Specification, version 1.2 [EB/OL]. https://globalplatform.org/specs-library/?filter-committee=tee

  6. Roch B (2004) Monolithic kernel versus microkernel: TU Wien 10(4):1–6

    Google Scholar 

  7. De Goyeneche JM, De Sousa EAF (1999) Loadable Kernel Modules. IEEE Softw 16(1):65–71

    Article  Google Scholar 

  8. Golftheman (2008) Monolith-, Micro- and a Hybrid Kernel [EB/OL]. https://upload.wikimedia.org/wikipedia/commons/d/d0/OS-structure2.svg:Wikipedia

  9. Li W, Ma M, Han J et al (2014) Building trusted path on untrusted device drivers for mobile devices. In: Proceedings of 5th Asia-Pacific workshop on systems. ACM, p 8

    Google Scholar 

  10. Qualcomm (2018) Snapdragon security [EB/OL]. https://www.qualcomm.com/solutions/mobile-computing/features/security

  11. Lee Y, Kim J, Lim KS et al (2018) Secure mobile device structure for trust IoT. J Supercomput 74(12):6646–6664

    Article  Google Scholar 

  12. Trustonic. Trustonic Kinibi technology [EB/OL]. https://developer.trustonic.com/discover/technology.

  13. Sierraware (2014) Open virtualization build and boot guide for arm V7 AND arm V8, Version 2.5.0.1 [EB/OL]. http://www.openvirtualization.org/SierraTEE_build_and_boot_guide.pdf

  14. Mendoza S (2018) Open portable trusted execution environment [EB/OL]. https://www.op-tee.org/

  15. Malaiya YK, Denton J (1997) Estimating defect density using test coverage. Rapport Technique CS-98–104 6, Colorado State University

    Google Scholar 

  16. Atamli-Reineh A, Borgaonkar R, Balisane RA et al (2016) Analysis of trusted execution environment usage in samsung KNOX. In: Proceedings of the 1st workshop on system software for trusted execution. ACM, p 7.

    Google Scholar 

  17. Kim D, Jung Y, Toh KA et al (2016) An empirical study on iris recognition in a mobile phone. Expert Syst Appl 54:328–339

    Article  Google Scholar 

  18. Heiser G (2005) Secure embedded systems need microkernels. USENIX; Login 30(6):9–13

    Google Scholar 

  19. Heiser G, Elphinstone K, Kuz I et al (2007) Towards trustworthy computing systems: taking microkernels to the next level. ACM SIGOPS Oper Syst Rev 41(4):3–11

    Article  Google Scholar 

  20. Heiser G, Elphinstone K (2016) L4 microkernels: The lessons from 20 years of research and deployment. ACM Trans Comput Syst (TOCS) 34(1):1

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Beijing Smart-Chip Microelectronics Technology Co., Ltd, Haidian District, 66 Xixiaokou Road, Beijing, 100192, P.R. China

    De Jian Li, Hui Wang, Xiao Ke Tang, Li Xin Yang & Chong Fei Shen

  2. The University of Electronic Science and Technology of China, Xiyuan Ave, West Hi-Tech Zone, Chengdu, 611731, P. R. China

    Kun Xiao

Authors
  1. De Jian Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Hui Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Xiao Ke Tang
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Li Xin Yang
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Chong Fei Shen
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Kun Xiao
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to De Jian Li .

Editor information

Editors and Affiliations

  1. Middlesex University, London, UK

    Xin-She Yang

  2. The University of Reading, Reading, UK

    Simon Sherratt

  3. JIS University, Kolkata, India

    Nilanjan Dey

  4. Global Knowledge Research Foundation, Ahmedabad, India

    Amit Joshi

Rights and permissions

Reprints and permissions

Copyright information

© 2022 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Li, D.J., Wang, H., Tang, X.K., Yang, L.X., Shen, C.F., Xiao, K. (2022). Secure Trusted Operating System Based on Microkernel Architecture. In: Yang, XS., Sherratt, S., Dey, N., Joshi, A. (eds) Proceedings of Sixth International Congress on Information and Communication Technology. Lecture Notes in Networks and Systems, vol 216. Springer, Singapore. https://doi.org/10.1007/978-981-16-1781-2_17

Download citation

Publish with us

Policies and ethics

Search

Navigation