BATTLE OF SKM AND IUM
blackhat2015
blackhat2015
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
VOCABULARY REVIEW<br />
• “Normal World” / “Secure World” – ARM/TrustZone-borrowed terms to describe secured secrets<br />
• SMART/VSM – Secure Mode Application Run Time / Virtual Secure Mode – why we’re here today<br />
• SK – SMART Kernel, one of the core modules running inside <strong>SKM</strong><br />
• HLOS – High Level OS, an older name for “Normal World”<br />
• NTOS – NT OS, the “Normal World” kernel (Ring 0)<br />
• <strong>IUM</strong> – Isolated User Mode, another name for “Secure World”, specifically Ring 3<br />
• <strong>SKM</strong> – Secure Kernel Mode, the “Secure World”, but running in Ring 0<br />
• VTL – Virtual Trust Level, a synthetic “ring level” managed by the hypervisor (higher is more privileged)<br />
• VTL 0 -> Normal World/Mode<br />
• VTL 1 -> Secure World/Mode<br />
• VBS – Virtualization Based Security, the set of features that VSM enables on Windows 10 / Server 2016