ARM Security Technology Building a Secure System using ...

More documents

Recommendations

Info

Introduction 1.2 The need for security 1.2.1 Hardware enforced security Embedded devices are handling data of increasing value, such as consumer banking credentials. They are also steadily becoming open software platforms with high levels of off-device connectivity that enable the consumer to download arbitrary third-party applications. This puts these devices in a high risk position. In the desktop environment the combination of open software platforms, arbitrary application download, and valuable assets present on the device, have been shown to significantly increase the risk of a security vulnerability being exploited. Additionally, if the value of data passing through these systems is increasing, it is more likely that attackers will invest in breaking them. Malicious Download Exploitable Flaw System Call Interface Banking Application Passcode Operating System Kernel Figure 1-1 : Attacking an application The aim of the ARM TrustZone technology is to enable a device to benefit from both a feature-rich open operating environment and a robust security solution. A well designed system hardware architecture and appropriate secure software design can ensure that the sensitive data remains safe, no matter what the less trusted operating environment does. Making an embedded product safe from malicious attacks has consequences for the entire system design. The hardware and software present in the device must work together to enable robust security countermeasures against the correct types of attack. The Trusted Computing Group whitepaper “Securing Mobile Devices on Converged Networks” identifies that the best protected systems have dedicated hardware security measures included from the beginning of their design process, starting with the specification for the processor core and the SoC infrastructure. Careful consideration of hardware security at this early stage allows protection to be built into the device that would be impossible to add later in the design process. 1-4 Copyright © 2005-2009 ARM Limited. All rights reserved. PRD29-GENC-009492C Non-Confidential Unrestricted Access
Introduction ARM TrustZone technology enables this level of system-wide security by integrating protective measures into the ARM processor, bus fabric, and system peripheral IP. Through a combination of integrated hardware and software components, TrustZone technology provides a framework that allows a diverse range of secure system architectures to be implemented with minimal impact on the cost of the device. PRD29-GENC-009492C Copyright © 2005-2009 ARM Limited. All rights reserved. 1-5 Unrestricted Access Non-Confidential
Page 1 and 2: ARM Security Technology Building a
Page 3 and 4: Product Status This document is an
Page 5 and 6: Contents ARM Security Technology Pr
Page 7 and 8: Preface This preface introduces the
Page 9 and 10: Using this document This document i
Page 11 and 12: Feedback Feedback on this document
Page 13 and 14: Chapter 1 Introduction The chapter
Page 15: 1.1.2 Limitations of security solut
Page 19 and 20: Introduction Security requirements
Page 21 and 22: 1.3.3 How are devices attacked? Int
Page 23 and 24: Remote attacker Introduction The cl
Page 25 and 26: Chapter 2 System Security The chapt
Page 27 and 28: 2.1.1 External hardware security mo
Page 29 and 30: 2.1.3 Software virtualization Syste
Page 31 and 32: 2.2 TrustZone hardware security 2.2
Page 33 and 34: Chapter 3 TrustZone Hardware Archit
Page 35 and 36: TrustZone Hardware Architecture Whe
Page 37 and 38: 3.2.3 Memory aliasing TrustZone Har
Page 39 and 40: TrustZone Hardware Architecture The
Page 41 and 42: Example TrustZone Hardware Architec
Page 43 and 44: 3.3.3 Secure interrupts TrustZone H
Page 45 and 46: 3.3.4 Secure processor configuratio
Page 47 and 48: TrustZone Hardware Architecture Any
Page 49 and 50: 3.4 Debug architecture 3.4.1 Proces
Page 51 and 52: TrustZone Hardware Architecture If
Page 53 and 54: Chapter 4 TrustZone Hardware Librar
Page 55 and 56: TrustZone Hardware Library These br
Page 57 and 58: 4.1.3 PrimeCell DMA Controller - PL
Page 59 and 60: TrustZone Hardware Library general
Page 61 and 62: Interesting features related to Tru
Page 63 and 64: 4.3 Reuse of AMBA2 AHB IP 4.3.1 Reu
Page 65 and 66: Chapter 5 TrustZone Software Archit
Page 67 and 68:
Secure operating system TrustZone S
Page 69 and 70:
5.2 Booting a secure system 5.2.1 B
Page 71 and 72:
Chain of trust TrustZone Software A
Page 73 and 74:
5.3 Monitor mode software 5.3.1 Con
Page 75 and 76:
5.3.3 Interrupt latency impact Trus
Page 77 and 78:
5.4 Secure software and multiproces
Page 79 and 80:
TrustZone Software Architecture Not
Page 81 and 82:
5.5.1 API availability TrustZone So
Page 83 and 84:
Chapter 6 TrustZone System Design T
Page 85 and 86:
6.2 Example use cases 6.2.1 Content
Page 87 and 88:
6.2.2 Mobile Payment TrustZone Syst
Page 89 and 90:
Assets TrustZone System Design The
Page 91 and 92:
6.3 Gadget2008 specification 6.3.1
Page 93 and 94:
TrustZone System Design is a return
Page 95 and 96:
Memory requirements 6.3.3 Mobile pa
Page 97 and 98:
Modem Cortex-R4 DMA (PL330) TZASC (
Page 99 and 100:
Chapter 7 Design Checklists The cha
Page 101 and 102:
7.2 Hardware design checklist Desig
Page 103 and 104:
7.3 Software design checklist 7.3.1
Page 105 and 106:
Glossary The items in this glossary
Page 107 and 108:
(2) The trusted virtual processor i
show all

ARM Security Technology Building a Secure System using ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?