Designing Secure Enclaves on RISC-V

Art der Arbeit:

Studien-/Bachelor-/Diplom-/Masterarbeit

Betreuer:

Bove, Davide
Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen)
E-Mail: davide.bove@fau.de

Beschreibung der Arbeit:

Mobile devices use Trusted Execution Environments (TEEs) to protect specific applications from a compromised operating system. Especially security-critical use cases such as cryptography and authentication are often implemented as a trusted application inside so-called Enclaves. These enclaves offer an isolated memory region inside a system to execute actions without interference from outside.
For the ARM architecture, used prominently on Android and iOS devices, there is TrustZone, which implements the TEE concept. Since mostly every implementation of TEE in current devices is proprietary, the implementations are very difficult to analyze and impossible to improve. Therefore, we are going to have a look at an open implementation of the Enclave concept on the free RISC-V [1] architecture. For this, we have a look at Keystone [2,3], a framework for designing and building own TEE concepts. The goal of this thesis is to look at different problems of traditional ARM TEEs and implement better TEE designs.

[1] RISC-V - Wikipedia
[2] Keystone: An Open Framework for Architecting Trusted Execution Environments
[3] Keystone: An Open-Source Secure Enclave for RISC-V Processors - Youtube

Vorausgesetzte Vorlesungen bzw. Kenntnisse:

• Some experience with low-level languages like C / C++ is required. See here for some code examples that you need to understand and reproduce.

• Ability to read text in English language.
  

Schlagwörter:

TEE, RISC-V, security

Bearbeitungszustand:

Die Arbeit ist bereits abgeschlossen.
Bearbeiter:	Jonathan Schmidt
Abgegeben am:	30.3.2021