keynote

Hardware-assisted Trusted Execution Environments: Look Back, Look Ahead

Author:

N. AsokanAuthors Info & Claims

CCS '19: Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security

Page 1687

https://doi.org/10.1145/3319535.3364969

Published: 06 November 2019 Publication History

Get Access

Abstract

Over the last two decades, hardware-based isolated execution environments, commonly known as "trusted execution environments" or TEEs, have become widely deployed [1,2,3,4]. However, concerns about vulnerabilities (like the Foreshadow attacks [5]), and potential for abuse have been persistent and have recently become increasingly pronounced. In this talk, I will discuss the history of (mobile) TEEs [6], what motivated their design and large-scale deployment, and how they have evolved during the last two decades. I will then discuss some of their shortcomings and potential approaches for overcoming them. I will also briefly touch on other types of hardware security primitives that are being rolled out by processor manufacturers and the opportunities they offer for securing computing

Supplementary Material

WEBM File (p1687-asokan.webm)

Download
288.93 MB

References

[1]

N. Asokan, Jan-Erik Ekberg, Kari Kostiainen, Anand Rajan, Carlos V. Rozas, Ahmad-Reza Sadeghi, Steffen Schulz, Christian Wachsmann: Mobile Trusted Computing. Proceedings of the IEEE 102(8): 1189--1206 (2014)

Google Scholar

[2]

Jan-Erik Ekberg, Kari Kostiainen, N. Asokan: The Untapped Potential of Trusted Execution Environments on Mobile Devices. IEEE Security & Privacy 12(4): 29--37 (2014)

Google Scholar

[3]

ARM: ARM TrustZone, https://developer.arm.com/ip-products/security-ip/trustzone

Google Scholar

[4]

Intel: Intel Software Guard Extensions, https://software.intel.com/en-us/sgx

Google Scholar

[5]

Jo Van Bulck,et al: Extracting the Keys to the Intel SGX Kingdom with Transient Out-of-Order Execution. USENIX Security Symposium 2018: 991--1008

Google Scholar

[6]

Saara Matala, Thomas Nyman, N. Asokan: Historical insight into the development of Mobile TEEs, article in Aalto SSG blog, June 2019 http://blog.ssg.aalto.fi/2019/06/historical-insight-into-development-of.html

Google Scholar

Cited By

View all

Paju AJaved MNurmi JSavimäki JMcGillion BBrumley B(2023)SoK: A Systematic Review of TEE Usage for Developing Trusted ApplicationsProceedings of the 18th International Conference on Availability, Reliability and Security10.1145/3600160.3600169(1-15)Online publication date: 29-Aug-2023
https://dl.acm.org/doi/10.1145/3600160.3600169
PENG TGUAN KLIU J(2022)A Privacy-Preserving Mobile Crowdsensing Scheme Based on Blockchain and Trusted Execution EnvironmentIEICE Transactions on Information and Systems10.1587/transinf.2021BCP0001E105.D:2(215-226)Online publication date: 1-Feb-2022
https://doi.org/10.1587/transinf.2021BCP0001
Pop VNiemi AManea VRusanen AEkberg JLindorfer MPolakis J(2022)Towards securely migrating webassembly enclavesProceedings of the 15th European Workshop on Systems Security10.1145/3517208.3523755(43-49)Online publication date: 5-Apr-2022
https://dl.acm.org/doi/10.1145/3517208.3523755
Show More Cited By

Recommendations

Trusted execution environments on mobile devices
CCS '13: Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security

A trusted execution environment (TEE) is a secure processing environment that is isolated from the normal processing environment where the device operating system and applications run. The first mobile phones with hardware-based TEEs appeared almost a ...
TEESec: Pre-Silicon Vulnerability Discovery for Trusted Execution Environments
ISCA '23: Proceedings of the 50th Annual International Symposium on Computer Architecture

Trusted execution environments (TEE) are CPU hardware extensions that provide security guarantees for applications running on untrusted operating systems. The security of TEEs is threatened by a variety of microarchitectural vulnerabilities, which ...
Establishing Mutually Trusted Channels for Remote Sensing Devices with Trusted Execution Environments
ARES '17: Proceedings of the 12th International Conference on Availability, Reliability and Security

Remote and largely unattended sensing devices are being deployed rapidly in sensitive environments, such as healthcare, in the home, and on corporate premises. A major challenge, however, is trusting data from such devices to inform critical decision-...

Comments

Information & Contributors

Information

Published In

CCS '19: Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security

November 2019

2755 pages

ISBN:9781450367479

DOI:10.1145/3319535

General Chairs:
Lorenzo Cavallaro
King's College London, UK
,
Johannes Kinder
Bundeswehr University Munich, Germany
,
Program Chairs:
XiaoFeng Wang
Indiana University, USA
,
Jonathan Katz
George Mason University, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 06 November 2019

Check for updates

Author Tags

Qualifiers

Keynote

Conference

CCS '19

Sponsor:

SIGSAC

CCS '19: 2019 ACM SIGSAC Conference on Computer and Communications Security

November 11 - 15, 2019

London, United Kingdom

Acceptance Rates

CCS '19 Paper Acceptance Rate 149 of 934 submissions, 16%;

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

4
Total Citations
View Citations
751
Total Downloads

Downloads (Last 12 months)52
Downloads (Last 6 weeks)5

Reflects downloads up to 28 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Paju AJaved MNurmi JSavimäki JMcGillion BBrumley B(2023)SoK: A Systematic Review of TEE Usage for Developing Trusted ApplicationsProceedings of the 18th International Conference on Availability, Reliability and Security10.1145/3600160.3600169(1-15)Online publication date: 29-Aug-2023
https://dl.acm.org/doi/10.1145/3600160.3600169
PENG TGUAN KLIU J(2022)A Privacy-Preserving Mobile Crowdsensing Scheme Based on Blockchain and Trusted Execution EnvironmentIEICE Transactions on Information and Systems10.1587/transinf.2021BCP0001E105.D:2(215-226)Online publication date: 1-Feb-2022
https://doi.org/10.1587/transinf.2021BCP0001
Pop VNiemi AManea VRusanen AEkberg JLindorfer MPolakis J(2022)Towards securely migrating webassembly enclavesProceedings of the 15th European Workshop on Systems Security10.1145/3517208.3523755(43-49)Online publication date: 5-Apr-2022
https://dl.acm.org/doi/10.1145/3517208.3523755
Mannan MAsokan N(2020)Confronting the Limitations of Hardware-Assisted SecurityIEEE Security and Privacy10.1109/MSEC.2020.301541318:5(6-7)Online publication date: 1-Sep-2020
https://dl.acm.org/doi/10.1109/MSEC.2020.3015413

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

Supplementary Material

References

Cited By

Recommendations

Trusted execution environments on mobile devices

TEESec: Pre-Silicon Vulnerability Discovery for Trusted Execution Environments

Establishing Mutually Trusted Channels for Remote Sensing Devices with Trusted Execution Environments

Comments

Information

Published In

Sponsors

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Upcoming Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations