Giving Mobile Security the Boot
TrustZone
TrustZone
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>Boot</strong> Chains of Trust<br />
Android <strong>Boot</strong>: A<strong>Boot</strong><br />
• Commonly* based off of open source Little Kernel<br />
– May be customized by vendor<br />
• Supports FASTboot or o<strong>the</strong>r (e.g. ODIN) for flashing<br />
• May or may not be unlockable ( 解 鎖 )<br />
– If unlocked:<br />
• Effaces data (to ensure user data won’t be compromised)<br />
• Breaks chain of trust (any kernel can be loaded)<br />
• Usually blows a Qfuse to indicate void warranty<br />
<strong>Boot</strong>ROM SBL A<strong>Boot</strong><br />
Kernel<br />
+ initrd<br />
* - Samsung, o<strong>the</strong>rs have custom loaders<br />
(C) 2016 Jonathan Levin & Technologeeks.com - Share freely, but please cite source!