The paper „Regulating ARM TrustZone Devices in Restricted Spaces“ by CYSEC researchers Ferdinand Brasser, Christopher Liebchen and Ahmad-Reza Sadeghi has been accepted at MobiSys 2016, the ACM International Conference on Mobile Systems, Applications, and Services. The paper is a collaboration between TU Darmstadt and Rutgers University.
MobiSys 2016 is taking place in Singapore, 26-30 June 2016.
ARM TrustZone explained easy – watch the video.
Smart personal devices equipped with a wide range of sensors and peripherals can potentially be misused in various environments. They can be used to exfiltrate sensitive information from enterprises and federal offices or be used to smuggle unauthorized information into classrooms and examination halls. One way to prevent these situations is to regulate how smart devices are used in such restricted spaces.
In this paper, we present an approach that robustly achieves this goal for ARM TrustZone-based personal devices. In our approach, restricted space hosts use remote memory operations to analyze and regulate guest devices within the restricted space. We show that the ARM TrustZone allows our approach to obtain strong security guarantees while only requiring a small trusted computing base to execute on guest devices.