Demystifying the Secure Enclave Processor
LytVKz
LytVKz
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
• Mode actually used is AES-256-XEX.<br />
• I factor of XEX being <strong>the</strong> physical address of <strong>the</strong><br />
block being encrypted left-shifted by 4 (i.e.<br />
divided by AES block size).<br />
• No validation: Possible to corrupt any 16 byte<br />
block of SEP memory if you can tamper with<br />
external RAM.<br />
• Transparent encryption and decryption:<br />
▫ After boot, SEPOS itself has all page mappings to<br />
0x88_0000_0000 with exception of hardware<br />
registers and <strong>the</strong> shared memory region with AP.