ARM Security Technology Building a Secure System using ...

More documents

Recommendations

Info

Introduction Lab attack 1.3.4 Who attacks devices? The lab attack vector is the most comprehensive and invasive. If the attacker has access to laboratory equipment, such as electron microscopes, they can perform unlimited reverse engineering of the device. It must be assumed that the attacker can reverse engineer transistor-level detail for any sensitive part of the design - including logic and memories. Attackers can reverse engineer a design, attach microscopic logic probes to silicon metal layers, and glitch a running circuit using lasers or other techniques. Attackers can also monitor analog signals, such as device power usage and electromagnetic emissions, to perform attacks such as cryptographic key analysis. In most cases, considering the rule of thumb that states every device can be broken, a device should not try and defend against lab attack directly, but should take measures which limit the damage when a device is broken and therefore make the lab attack uneconomical. Use of per-device unique secrets is one example where reverse engineering a single device provides the attacker with no useful information; they have the secret for the device that they already own, but not any of the other devices in that class. Note TrustZone technology is designed to provide a hardware-enforced logical separation between security components and the rest of the SoC infrastructure. Lab attacks are outside of the scope of the protection provided TrustZone technology, although a SoC using TrustZone can be used in conjunction with an ARM SecurCore © smartcard if protection against physical attacks is needed for some assets. Once a designer has identified the assets, and the possible attacks, it is important to identify the possible attackers. Different attackers can deploy different types of attack, and certain assets will only attract certain attackers. This analysis can help rationalize what attacks each asset needs to be protected against. The analysis should also include a description of who is explicitly trusted with access to assets stored on the device. This can highlight weaknesses in the security model. There have been a number of published cases in which consumer data has been stolen from devices by maintenance or repair technicians, and subsequently published on the internet. 1-10 Copyright © 2005-2009 ARM Limited. All rights reserved. PRD29-GENC-009492C Non-Confidential Unrestricted Access
Remote attacker Introduction The classical view of an attacker is a distributor of the malicious software that we see on desktop workstations: viruses and other malware. These attackers have no physical access to the device they are attacking, although may have access to a similar device to develop the attack, and rely on exploiting software vulnerabilities and user error to gain access to sensitive resources. The increasing software complexity of embedded devices means that there are statistically more bugs for the attackers to exploit. The capability to install third-party code, including the execution of browser-based content, makes it easier to get the malicious code onto the devices to perform the attack. Security specialist The most technically capable attackers are criminal gangs, security experts, and users attacking devices for fun. These groups are capable of executing a lab attack, described on page 1-10. This class of attacker is generally attempting to discover a class-break attack that can be reproduced across a large number of devices. This secondary attack may be deployed by another attacker. Trusted developer An often unconsidered attack is that executed, or at least assisted, by a person who could be considered trusted. Company employees have ended up in the news because they have stolen secret information related to designs, or purposefully damaged an internal computer network. In many cases these employees would have been considered explicitly trusted on the day before their attack was discovered. Using the economic argument to justify defense against these kinds of attacks, it is usually cheaper, and faster, to bribe someone with access to design information than it is to reverse engineer a piece of silicon. Although this type of attack can be difficult to protect against, some defensive measures in business process can be used. Processes that restrict access to sensitive materials, and audits who has accessed them, can be used. Device owner The last group of attackers against devices that we will discuss in this document are the device owners themselves. This group of attackers have a typical aim of gaining free access to services and content. In general the device owner is motivated to perform the PRD29-GENC-009492C Copyright © 2005-2009 ARM Limited. All rights reserved. 1-11 Unrestricted Access Non-Confidential
Page 1 and 2: ARM Security Technology Building a
Page 3 and 4: Product Status This document is an
Page 5 and 6: Contents ARM Security Technology Pr
Page 7 and 8: Preface This preface introduces the
Page 9 and 10: Using this document This document i
Page 11 and 12: Feedback Feedback on this document
Page 13 and 14: Chapter 1 Introduction The chapter
Page 15 and 16: 1.1.2 Limitations of security solut
Page 17 and 18: Introduction ARM TrustZone technolo
Page 19 and 20: Introduction Security requirements
Page 21: 1.3.3 How are devices attacked? Int
Page 25 and 26: Chapter 2 System Security The chapt
Page 27 and 28: 2.1.1 External hardware security mo
Page 29 and 30: 2.1.3 Software virtualization Syste
Page 31 and 32: 2.2 TrustZone hardware security 2.2
Page 33 and 34: Chapter 3 TrustZone Hardware Archit
Page 35 and 36: TrustZone Hardware Architecture Whe
Page 37 and 38: 3.2.3 Memory aliasing TrustZone Har
Page 39 and 40: TrustZone Hardware Architecture The
Page 41 and 42: Example TrustZone Hardware Architec
Page 43 and 44: 3.3.3 Secure interrupts TrustZone H
Page 45 and 46: 3.3.4 Secure processor configuratio
Page 47 and 48: TrustZone Hardware Architecture Any
Page 49 and 50: 3.4 Debug architecture 3.4.1 Proces
Page 51 and 52: TrustZone Hardware Architecture If
Page 53 and 54: Chapter 4 TrustZone Hardware Librar
Page 55 and 56: TrustZone Hardware Library These br
Page 57 and 58: 4.1.3 PrimeCell DMA Controller - PL
Page 59 and 60: TrustZone Hardware Library general
Page 61 and 62: Interesting features related to Tru
Page 63 and 64: 4.3 Reuse of AMBA2 AHB IP 4.3.1 Reu
Page 65 and 66: Chapter 5 TrustZone Software Archit
Page 67 and 68: Secure operating system TrustZone S
Page 69 and 70: 5.2 Booting a secure system 5.2.1 B
Page 71 and 72: Chain of trust TrustZone Software A
Page 73 and 74:
5.3 Monitor mode software 5.3.1 Con
Page 75 and 76:
5.3.3 Interrupt latency impact Trus
Page 77 and 78:
5.4 Secure software and multiproces
Page 79 and 80:
TrustZone Software Architecture Not
Page 81 and 82:
5.5.1 API availability TrustZone So
Page 83 and 84:
Chapter 6 TrustZone System Design T
Page 85 and 86:
6.2 Example use cases 6.2.1 Content
Page 87 and 88:
6.2.2 Mobile Payment TrustZone Syst
Page 89 and 90:
Assets TrustZone System Design The
Page 91 and 92:
6.3 Gadget2008 specification 6.3.1
Page 93 and 94:
TrustZone System Design is a return
Page 95 and 96:
Memory requirements 6.3.3 Mobile pa
Page 97 and 98:
Modem Cortex-R4 DMA (PL330) TZASC (
Page 99 and 100:
Chapter 7 Design Checklists The cha
Page 101 and 102:
7.2 Hardware design checklist Desig
Page 103 and 104:
7.3 Software design checklist 7.3.1
Page 105 and 106:
Glossary The items in this glossary
Page 107 and 108:
(2) The trusted virtual processor i
show all

ARM Security Technology Building a Secure System using ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?