标题：OPTZ: A hardware isolation architecture of multi-tasks based on Trustzone support
作者：Dai, Hongjun ;Chen, Kang
作者机构：[Dai, Hongjun ;Chen, Kang ] Department of Computer Science and Technology, Shandong University, China
会议名称：15th IEEE International Symposium on Parallel and Distributed Processing with Applications and 16th IEEE International Conference on Ubiquitous Computing and Communications, ISPA/IUCC 2017
会议日期：December 12, 2017 - December 15, 2017
来源：Proceedings - 15th IEEE International Symposium on Parallel and Distributed Processing with Applications and 16th IEEE International Conference on Ubiquitous Computing and Communications, ISPA/IUCC 2017
摘要：In order to improve the safety of existing embedded system, make user data more secure, we propose an implementation of multitasking hardware isolation based on TrustZone named OPTZ (Open TrustZone). ARM TrustZone technology can implement the hardware isolation to improve the security of the software without additional hardware chips outside. In this paper we designed a complete trusted execution environment (TEE) and implemented the multitasking hardware isolation between normal world and secure world. Moreover, the multitasks in the secure memory are also separated from each other. Our architecture includes a secure operating system running in secure world, an normal operating system from normal world, secure services and communication mechanism. At last, we have done some experiments of physical memory access to test and verify the correctness of our architecture. Client application(CA) runs in normal world cannot access the secure world's physical address. The trusted application(TA) can communicate with each other but not access. The experiment results show that multitasking hardware isolation worked well, and the memory isolation can reach the hardware level.
© 2017 IEEE.