TRACES: TEE-based Runtime Auditing for Commodity Embedded Systems
Control Flow Attestation (CFA) offers a means to detect control flow hijacking attacks on remote devices, enabling verification of their runtime trustworthiness. CFA generates a trace (CFLog) containing the destination of all branching instructions executed. This allows a remote Verifier (Vrf) to in...
Gespeichert in:
| Hauptverfasser: | , , , |
|---|---|
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | |
| container_volume | |
| creator | Caulfield, Adam Neto, Antonio Joia Rattanavipanon, Norrathep Nunes, Ivan De Oliveira |
| description | Control Flow Attestation (CFA) offers a means to detect control flow
hijacking attacks on remote devices, enabling verification of their runtime
trustworthiness. CFA generates a trace (CFLog) containing the destination of
all branching instructions executed. This allows a remote Verifier (Vrf) to
inspect the execution control flow on a potentially compromised Prover (Prv)
before trusting that a value/action was correctly produced/performed by Prv.
However, while CFA can be used to detect runtime compromises, it cannot
guarantee the eventual delivery of the execution evidence (CFLog) to Vrf. In
turn, a compromised Prv may refuse to send CFLog to Vrf, preventing its
analysis to determine the exploit's root cause and appropriate remediation
actions.
In this work, we propose TRACES: TEE-based Runtime Auditing for Commodity
Embedded Systems. TRACES guarantees reliable delivery of periodic runtime
reports even when Prv is compromised. This enables secure runtime auditing in
addition to best-effort delivery of evidence in CFA. TRACES also supports a
guaranteed remediation phase, triggered upon compromise detection to ensure
that identified runtime vulnerabilities can be reliably patched. To the best of
our knowledge, TRACES is the first system to provide this functionality on
commodity devices (i.e., without requiring custom hardware modifications). To
that end, TRACES leverages support from the ARM TrustZone-M Trusted Execution
Environment (TEE). To assess practicality, we implement and evaluate a fully
functional (open-source) prototype of TRACES atop the commodity ARM Cortex-M33
micro-controller unit. |
| doi_str_mv | 10.48550/arxiv.2409.19125 |
| format | Article |
| fullrecord | <record><control><sourceid>arxiv_GOX</sourceid><recordid>TN_cdi_arxiv_primary_2409_19125</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2409_19125</sourcerecordid><originalsourceid>FETCH-arxiv_primary_2409_191253</originalsourceid><addsrcrecordid>eNpjYJA0NNAzsTA1NdBPLKrILNMzMjGw1DO0NDQy5WRwDAlydHYNtlIIcXXVTUosTk1RCCrNK8nMTVVwLE3JLMnMS1dIyy9ScM7Pzc0H8isVXHOTUlNSgOqCK4tLUnOLeRhY0xJzilN5oTQ3g7yba4izhy7YsviCoszcxKLKeJCl8WBLjQmrAAB6ZjXV</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>TRACES: TEE-based Runtime Auditing for Commodity Embedded Systems</title><source>arXiv.org</source><creator>Caulfield, Adam ; Neto, Antonio Joia ; Rattanavipanon, Norrathep ; Nunes, Ivan De Oliveira</creator><creatorcontrib>Caulfield, Adam ; Neto, Antonio Joia ; Rattanavipanon, Norrathep ; Nunes, Ivan De Oliveira</creatorcontrib><description>Control Flow Attestation (CFA) offers a means to detect control flow
hijacking attacks on remote devices, enabling verification of their runtime
trustworthiness. CFA generates a trace (CFLog) containing the destination of
all branching instructions executed. This allows a remote Verifier (Vrf) to
inspect the execution control flow on a potentially compromised Prover (Prv)
before trusting that a value/action was correctly produced/performed by Prv.
However, while CFA can be used to detect runtime compromises, it cannot
guarantee the eventual delivery of the execution evidence (CFLog) to Vrf. In
turn, a compromised Prv may refuse to send CFLog to Vrf, preventing its
analysis to determine the exploit's root cause and appropriate remediation
actions.
In this work, we propose TRACES: TEE-based Runtime Auditing for Commodity
Embedded Systems. TRACES guarantees reliable delivery of periodic runtime
reports even when Prv is compromised. This enables secure runtime auditing in
addition to best-effort delivery of evidence in CFA. TRACES also supports a
guaranteed remediation phase, triggered upon compromise detection to ensure
that identified runtime vulnerabilities can be reliably patched. To the best of
our knowledge, TRACES is the first system to provide this functionality on
commodity devices (i.e., without requiring custom hardware modifications). To
that end, TRACES leverages support from the ARM TrustZone-M Trusted Execution
Environment (TEE). To assess practicality, we implement and evaluate a fully
functional (open-source) prototype of TRACES atop the commodity ARM Cortex-M33
micro-controller unit.</description><identifier>DOI: 10.48550/arxiv.2409.19125</identifier><language>eng</language><subject>Computer Science - Cryptography and Security</subject><creationdate>2024-09</creationdate><rights>http://arxiv.org/licenses/nonexclusive-distrib/1.0</rights><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>228,230,776,881</link.rule.ids><linktorsrc>$$Uhttps://arxiv.org/abs/2409.19125$$EView_record_in_Cornell_University$$FView_record_in_$$GCornell_University$$Hfree_for_read</linktorsrc><backlink>$$Uhttps://doi.org/10.48550/arXiv.2409.19125$$DView paper in arXiv$$Hfree_for_read</backlink></links><search><creatorcontrib>Caulfield, Adam</creatorcontrib><creatorcontrib>Neto, Antonio Joia</creatorcontrib><creatorcontrib>Rattanavipanon, Norrathep</creatorcontrib><creatorcontrib>Nunes, Ivan De Oliveira</creatorcontrib><title>TRACES: TEE-based Runtime Auditing for Commodity Embedded Systems</title><description>Control Flow Attestation (CFA) offers a means to detect control flow
hijacking attacks on remote devices, enabling verification of their runtime
trustworthiness. CFA generates a trace (CFLog) containing the destination of
all branching instructions executed. This allows a remote Verifier (Vrf) to
inspect the execution control flow on a potentially compromised Prover (Prv)
before trusting that a value/action was correctly produced/performed by Prv.
However, while CFA can be used to detect runtime compromises, it cannot
guarantee the eventual delivery of the execution evidence (CFLog) to Vrf. In
turn, a compromised Prv may refuse to send CFLog to Vrf, preventing its
analysis to determine the exploit's root cause and appropriate remediation
actions.
In this work, we propose TRACES: TEE-based Runtime Auditing for Commodity
Embedded Systems. TRACES guarantees reliable delivery of periodic runtime
reports even when Prv is compromised. This enables secure runtime auditing in
addition to best-effort delivery of evidence in CFA. TRACES also supports a
guaranteed remediation phase, triggered upon compromise detection to ensure
that identified runtime vulnerabilities can be reliably patched. To the best of
our knowledge, TRACES is the first system to provide this functionality on
commodity devices (i.e., without requiring custom hardware modifications). To
that end, TRACES leverages support from the ARM TrustZone-M Trusted Execution
Environment (TEE). To assess practicality, we implement and evaluate a fully
functional (open-source) prototype of TRACES atop the commodity ARM Cortex-M33
micro-controller unit.</description><subject>Computer Science - Cryptography and Security</subject><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2024</creationdate><recordtype>article</recordtype><sourceid>GOX</sourceid><recordid>eNpjYJA0NNAzsTA1NdBPLKrILNMzMjGw1DO0NDQy5WRwDAlydHYNtlIIcXXVTUosTk1RCCrNK8nMTVVwLE3JLMnMS1dIyy9ScM7Pzc0H8isVXHOTUlNSgOqCK4tLUnOLeRhY0xJzilN5oTQ3g7yba4izhy7YsviCoszcxKLKeJCl8WBLjQmrAAB6ZjXV</recordid><startdate>20240927</startdate><enddate>20240927</enddate><creator>Caulfield, Adam</creator><creator>Neto, Antonio Joia</creator><creator>Rattanavipanon, Norrathep</creator><creator>Nunes, Ivan De Oliveira</creator><scope>AKY</scope><scope>GOX</scope></search><sort><creationdate>20240927</creationdate><title>TRACES: TEE-based Runtime Auditing for Commodity Embedded Systems</title><author>Caulfield, Adam ; Neto, Antonio Joia ; Rattanavipanon, Norrathep ; Nunes, Ivan De Oliveira</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-arxiv_primary_2409_191253</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2024</creationdate><topic>Computer Science - Cryptography and Security</topic><toplevel>online_resources</toplevel><creatorcontrib>Caulfield, Adam</creatorcontrib><creatorcontrib>Neto, Antonio Joia</creatorcontrib><creatorcontrib>Rattanavipanon, Norrathep</creatorcontrib><creatorcontrib>Nunes, Ivan De Oliveira</creatorcontrib><collection>arXiv Computer Science</collection><collection>arXiv.org</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Caulfield, Adam</au><au>Neto, Antonio Joia</au><au>Rattanavipanon, Norrathep</au><au>Nunes, Ivan De Oliveira</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>TRACES: TEE-based Runtime Auditing for Commodity Embedded Systems</atitle><date>2024-09-27</date><risdate>2024</risdate><abstract>Control Flow Attestation (CFA) offers a means to detect control flow
hijacking attacks on remote devices, enabling verification of their runtime
trustworthiness. CFA generates a trace (CFLog) containing the destination of
all branching instructions executed. This allows a remote Verifier (Vrf) to
inspect the execution control flow on a potentially compromised Prover (Prv)
before trusting that a value/action was correctly produced/performed by Prv.
However, while CFA can be used to detect runtime compromises, it cannot
guarantee the eventual delivery of the execution evidence (CFLog) to Vrf. In
turn, a compromised Prv may refuse to send CFLog to Vrf, preventing its
analysis to determine the exploit's root cause and appropriate remediation
actions.
In this work, we propose TRACES: TEE-based Runtime Auditing for Commodity
Embedded Systems. TRACES guarantees reliable delivery of periodic runtime
reports even when Prv is compromised. This enables secure runtime auditing in
addition to best-effort delivery of evidence in CFA. TRACES also supports a
guaranteed remediation phase, triggered upon compromise detection to ensure
that identified runtime vulnerabilities can be reliably patched. To the best of
our knowledge, TRACES is the first system to provide this functionality on
commodity devices (i.e., without requiring custom hardware modifications). To
that end, TRACES leverages support from the ARM TrustZone-M Trusted Execution
Environment (TEE). To assess practicality, we implement and evaluate a fully
functional (open-source) prototype of TRACES atop the commodity ARM Cortex-M33
micro-controller unit.</abstract><doi>10.48550/arxiv.2409.19125</doi><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext_linktorsrc |
| identifier | DOI: 10.48550/arxiv.2409.19125 |
| ispartof | |
| issn | |
| language | eng |
| recordid | cdi_arxiv_primary_2409_19125 |
| source | arXiv.org |
| subjects | Computer Science - Cryptography and Security |
| title | TRACES: TEE-based Runtime Auditing for Commodity Embedded Systems |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-02T00%3A20%3A36IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-arxiv_GOX&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=TRACES:%20TEE-based%20Runtime%20Auditing%20for%20Commodity%20Embedded%20Systems&rft.au=Caulfield,%20Adam&rft.date=2024-09-27&rft_id=info:doi/10.48550/arxiv.2409.19125&rft_dat=%3Carxiv_GOX%3E2409_19125%3C/arxiv_GOX%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |