-
Welcome
-
Subscribe to
Sponsors
PLATINUM SPONSORS
GOLD SPONSORS
SILVER SPONSORS
T-SHIRT SPONSOR
EVENT SPONSORS
MEDIA SPONSORS
Generic Support for ARM TrustZone
This proposal has been accepted as a session.
One Line Summary
Given the the momentum that TrustZone is having in the open source community, it is time to bring generic support to the Linux Kernel.
Abstract
ARM TrustZone has been available since 2004. However, it is very recent that open frameworks have been proposed (e.g., SafeG, Genode, Open Virtualization) that makes it possible for the research community as well as the industry to experiment and develop innovative solutions with TrustZone. It is also now that ARM and Linaro are putting a significant amount of effort into standardizing the mechanisms to switch to TrustZone’s secure processor mode (i.e., secure world), most probably aiming at a more general use of TrustZone for ARMv8. Here, we refer to Trusted Firmware and the SMC Calling Convention. We believe that it is time to bring the interested parts together in order to: (i) discuss what is the best way to bring TrustZone support to the Linux Kernel, and (ii) define a generic interface that allows to use different TrustZone approaches from within the kernel, just as it happens today with TPM.
Tags
TrustZone, Hardware Security Extensions.
Presentation Materials
slidesSpeaker
-
Javier Gonzalez
IT Univeristy of Copenhagen- Website: http://www.javigon.com/
- Twitter: javigonnapster
Biography
I am a PhD student inside the Software and Systems Section at the IT University of Copenhagen, and Run-Time Security consultant at Xilinx. My research focuses on building system support for enforcing usage policies as a form of providing run-time security. I want to contribute designing and building technologies that make it easier for users to protect their privacy when they interact with digital services. I am also interested in storage systems, and hardware that can bridge security and performance.
I have worked extensively with ARM TrustZone, ARM processors, and the Zynq-7000 (Xilinx). In the last months I have spent time in building a generic TrustZone interface for the Linux Kernel. Here, I am looking for feedback to push it upstream.
Sessions
-
- Title: Generic Support for ARM TrustZone
- Microconference: BoF Track
- Room: Room 26
- Time: 4:30 – 5:30pm
-
One Line Summary:
Given the the momentum that TrustZone is having in the open source community, it is time to bring generic support to the Linux Kernel.
- slides
- Speakers: Javier Gonzalez
-
- Title: Support for open-channel SSDs and flash-agnostic APIs
- Microconference: File and Storage Systems
- Time: 2:15 – 4:45pm
-
One Line Summary:
Integration of flash-agnostic APIs (e.g., Key-value store, Object store, Atomic-IOs, etc.) with open-channel SSDs- status and discussion
- slides
- Speakers: Matias Bjørling, Jesper Madsen, Javier Gonzalez
