< Terug naar vorige pagina

Publicatie

Atlas: Application Confidentiality in Compromised Embedded Systems

Tijdschriftbijdrage - Tijdschriftartikel

© 2004-2012 IEEE. Due to the requirements of the Internet-of-Things, modern embedded systems have become increasingly complex, running different applications. In order to protect their intellectual property as well as the confidentiality of sensitive data they process, these applications have to be isolated from each other. Traditional memory protection and memory management units provide such isolation, but rely on operating system support for their configuration. However, modern operating systems tend to be vulnerable and cannot guarantee confidentiality when compromised. We present Atlas, a hardware-based security architecture, complementary to traditional memory protection mechanisms, ensuring code and data confidentiality through transparent encryption, even when the system software has been exploited. Atlas relies on its zero-software trusted computing base to protect against system-level attackers and also supports secure shared memory. We implemented Atlas based on the LEON3 softcore processor, including toolchain extensions for developers. Our FPGA-based evaluation shows minimal cycle overhead at the cost of a reduced maximum frequency.
Tijdschrift: IEEE Transactions on Dependable and Secure Computing
ISSN: 1545-5971
Issue: 3
Volume: 16
Pagina's: 415 - 423
Jaar van publicatie:2019
BOF-keylabel:ja
IOF-keylabel:ja
BOF-publication weight:3
CSS-citation score:1
Auteurs:International
Authors from:Higher Education
Toegankelijkheid:Open