GAROTA: Generalized Active Root-Of-Trust Architecture

02/13/2021
by   Esmerald Aliaj, et al.
0

In this paper, we set out to systematically design a minimal active RoT for tiny low-end MCU-s. We begin with the following questions: (1) What functions and hardware support are required to guarantee actions in the presence of malware?, (2) How to implement this efficiently?, and (3) What security benefits stem from such an active RoT architecture? We then design, implement, formally verify, and evaluate GAROTA: Generalized Active Root-Of-Trust Architecture. We believe that GAROTA is the first clean-slate design of an active RoT for low-end MCU-s. We show how GAROTA guarantees that even a fully software-compromised low-end MCU performs a desired action. We demonstrate its practicality by implementing GAROTA in the context of three types of applications where actions are triggered by: sensing hardware, network events and timers. We also formally specify and verify GAROTA functionality and properties.

READ FULL TEXT
POST COMMENT

Comments

There are no comments yet.

Authors

page 11

11/14/2020

Tiny-CFA: A Minimalistic Approach for Control-Flow Attestation Using Verified Proofs of Execution

The design of tiny trust anchors has received significant attention over...
06/05/2019

An Interposer-Based Root of Trust: Seize the Opportunity for Secure System-Level Integration of Untrusted Chiplets

Leveraging 2.5D interposer technology, we advocate the integration of un...
09/04/2020

2.5D Root of Trust: Secure System-Level Integration of Untrusted Chiplets

Dedicated, after acceptance and publication, in memory of the late Vasso...
10/21/2021

Certificate Root Stores: An Area of Unity or Disparity?

Organizations like Apple, Microsoft, Mozilla and Google maintain certifi...
03/31/2020

Trust Management as a Service: Enabling Trusted Execution in the Face of Byzantine Stakeholders

Trust is arguably the most important challenge for critical services bot...
06/24/2021

Trust Me If You Can: Trusted Transformation Between (JSON) Schemas to Support Global Authentication of Education Credentials

Recruiters and institutions around the world struggle with the verificat...
11/24/2021

The Surprising Benefits of Hysteresis in Unlimited Sampling: Theory, Algorithms and Experiments

The Unlimited Sensing Framework (USF) was recently introduced to overcom...
This week in AI

Get the week's most popular data science and artificial intelligence research sent straight to your inbox every Saturday.