an open framework for architecting tees
play

An Open Framework for Architecting TEEs Dayeol Lee, David - PowerPoint PPT Presentation

Jun 21, 2023 •296 likes •815 views

An Open Framework for Architecting TEEs Dayeol Lee, David Kohlbrenner, Shweta Shinde, Dawn Song, and Krste Asanovic Trusted Execution Environment (TEE) Applications User Program and Data Remote OS Attestation Trustworthy Hardware

  1. An Open Framework for Architecting TEEs Dayeol Lee, David Kohlbrenner, Shweta Shinde, Dawn Song, and Krste Asanovic

  2. Trusted Execution Environment (TEE) Applications User Program and Data Remote OS Attestation Trustworthy Hardware Integrity Confidentiality 2

  3. Keystone: an Open Framework for Customizable TEEs Untrusted ● Modular and Extensible Design Lower U-mode ○ Extensible functional and security plugins User Enclave process App ○ Implement new features without changing core primitive S-mode Privilege ● Simple and Clean Abstractions OS Enclave Runtime Hypervisor ○ Core security primitive: hardware-enforced isolation M-mode ○ Memory isolation with RISC-V standard PMP Security Monitor Root of Trust Higher ● Open Source Project Trusted ○ Support research projects ○ Build an open community Has been tested on QEMU, FPGA, and SoC keystone-enclave.org Standard RISC-V HW 3

  4. Keystone is NOT a Specific Design of TEE Keystone is a framework for customizable TEEs 4

  5. ● Customizable TEEs Keystone ● Keystone Framework ● Keystone Plugins An Open Framework for ● Evaluation Architecting TEEs 5

  6. TEEs are a Cornerstone Security Primitive ● Maximal Guarantees, Minimal Trust ○ Authenticate itself (device) ○ Authenticate software ○ Guarantee the integrity and privacy of remote execution ● Foundation for new security applications ○ Secure IoT sensor network ○ Decentralized applications (e.g., smart contracts/blockchain) ○ Lambda applications ○ Confidential computing in the cloud (e.g., machine learning) 6

  7. A New Model: Customizable TEEs ● A framework provides building blocks of TEEs ● Both the platform provide r and the enclave developer can customize what primitives and guarantees a TEE should employ ○ e.g., Software Defined Network (SDN) TEE Framework (Software) Secure I/O Side-Channel Protection libc support Secure Timer Dynamic Allocation Multithreading Memory Encryption Secure Boot Source of Randomness Memory Isolation Attestation Compatible Hardware 7

  8. Why Do We Need Customizable TEEs? ● Diversity of Deployments ○ Servers to sensors ● Clean Interfaces Between Manufacturers, Providers, and Developers ○ Manufacturers cannot anticipate all needs or uses ● Minimize Trusted Computing Base (TCB) ○ Don’t have it if you don’t need it ● Rapid Development of Security Features ○ Research on defenses needs better starting places 8

  9. Can We Customize Existing TEEs? 9

  10. Why do we Need a New Framework? - Specific threat model - Only 2 hardware isolation domains - Slow to iterate - Further isolation: - Non-modifiable software TCB Existing TEE platforms are fixed points in the design space 10

  11. RISC-V is The Best Place to Start Keystone ● Simple, Composible Primitives ○ Hardware-enforced memory isolation ○ Assists verification ● Privileged Programmable Layer ○ Enclaves with supervisor mode ● Open-Source Cores/SoCs ○ Amenable to HW/SW co-design ○ Verifiable ● Variety of Design and Deployment ○ Testing ground for all use-cases 11

  12. ● Customizable TEEs Keystone ● Keystone Framework ● Keystone Plugins An Open Framework for ● Evaluation Architecting TEEs 12

  13. Keystone Trust Model 13

  14. Keystone Trust Model 14

  15. Keystone Trust Model 15

  16. Keystone Trust Model 16

  17. Keystone Trust Model 17

  18. Memory Isolation via RISC-V PMP Switching access permissions of PMP entries at context switches 18

  19. Memory Isolation via RISC-V PMP Switching access permissions of PMP entries at context switches 19

  20. Memory Isolation via RISC-V PMP Switching access permissions of PMP entries at context switches 20

  21. How does Keystone Customize TEEs? 21

  22. Keystone Workflow for Customizable TEEs Development Provisioning Enclave Customize Customize Developer Platform Provider Security Enclave App (eapp) Monitor Runtime (RT) Hardware ... eapp User OS RT SM Hardware Hardware Deployment Manufacturer 22

  23. Keystone Workflow for Customizable TEEs 23

  24. Keystone Workflow for Customizable TEEs 24

  25. ● Customizable TEEs Keystone ● Keystone Framework ● Keystone Plugins An Open Framework for ● Evaluation Architecting TEEs 25

  26. Keystone Plugins ● Composable Building Blocks for TEE ○ Configured during compilation ○ Threat models (e.g., Side-channel defense) ○ Workload (e.g., Dynamic resizing) ● Support Diverse Features w/ Minimal TCB ○ Virtual memory management ○ Untrusted I/O ○ Dynamic resizing ○ ... TCB LoC of each components 26

  27. Free Memory Plugin ● Enclave can allocate free memory and manage MMU at run time ● Implemented on RT ~ 300 LoC Page Page Table Table text text RT data data RT heap text EApp stack data text data Free ... EApp ... heap Mem stack Static Mapping Dynamic Mapping 27

  28. Dynamic Enclave Resizing Plugin ● Intel SGXv1 enclaves cannot resize after measurement ○ Cannot dynamically add new virtual pages ○ Intel took a few years to have “dynamic memory allocation” in SGXv2 ○ Intel SGXv1 has < 100 MB physical memory limit ● Memory resizing in Keystone: ○ Enclave requests the OS to extend memory ○ OS calls an additional SM SBI “extend_enclave” ○ Took 2 engineer-days for prototyping (< 200 LoC) OS Memory Enclave Memory OS Memory 28

  29. Edge Call & Syscall Plugins ● Call interface between trusted and untrusted domain ● I/O System Calls (Proxy) ● Other System Calls e.g., mmap, brk, getrandom, … ● Supporting libc functions 29

  30. Off-the-shelf Runtime ● Boot seL4 microkernel as a runtime (~8,000 LoC) ● ~ 300 LoC modification for initialization ● Passes all seL4 tests (trivial overhead over native execution) 30

  31. ● Customizable TEEs Keystone ● Keystone Framework ● Keystone Plugins An Open Framework for ● Evaluation Architecting TEEs 31

  32. Experimental Setup for Performance Evaluation ● Rocket/BOOM in FPGA (FireSim) ● FU540 in HiFive Unleashed Board Platform Core Cache Size (KB) Latency (cycles) #, Type L1-I/D L2 L1 L2 Rocket-S 1 in-order 8/8 512 2 24 Rocket 1 in-order 16/16 512 2 24 BOOM 1 OoO 32/32 2048 4 24 FU540 4 in-order 32/32 2048 2 12-15 32

  33. CPU-Bound Benchmarks: CoreMark, Beebs ● Enclave init latency is almost proportional to the size ○ Enclave measurement dominates initialization ● No meaningful overhead in user application (±0.7%) 33

  34. I/O Benchmark: IOZone 34

  35. I/O Benchmark: IOZone 35

  36. Plugin Performance Trade-offs 36

  37. Cache Partitioning Plugin ● 50:50 Cache Way-Partitioning with FU540 L2 controller ● Flush L1 + L2 partition on context switch 37

  38. Cache Partitioning Plugin ● 50:50 Cache Way-Partitioning with FU540 L2 controller ● Flush L1 + L2 partition on context switch 38

  39. Cache Partitioning Plugin ● 50:50 Cache Way-Partitioning with FU540 L2 controller ● Flush L1 + L2 partition on context switch 39

  40. Cache Partitioning Plugin ● 50:50 Cache Way-Partitioning with FU540 L2 controller ● Flush L1 + L2 partition on context switch ● Overhead Depends on the Working Set Size ○ Up to 128.19% (miniz) L2 partitioning overhead ○ L1 flush overhead was trivial with the default context switch period (10 ms) 40

  41. Cache Partitioning Plugin ● 50:50 Cache Way-Partitioning with FU540 L2 controller ● Flush L1 + L2 partition on context switch ● Overhead Depends on the Working Set Size ○ Up to 128.19% (miniz) L2 partitioning overhead ○ L1 flush overhead was trivial with the default context switch period (10 ms) 41

  42. Dynamic Resizing Plugin ● Machine Learning (Inferencing in Torch, 9 Models, 2 Datasets) ● Keystone Overhead over Baseline ○ Min -3.12% (LeNet) due to lack of page faults ○ Max 7.35% (DenseNet) due to mmap implementation ● Reduced Initialization Latency with Dynamic Resizing ○ Runtime does not initialize free memory with dynamic resizing 42

  43. Is Keystone Expressive Enough to Run Real-World Applications? 43

  44. Real-World Use Cases ● Machine Learning Inference ○ Eyrie (3,000 LoC) + Torch Models (21,000-34,000 LoC) ○ seL4 (8,000 LoC) + FANN (14,000 LoC) ● Secure Communication, Crypto Libraries ○ Using libsodium ○ https://github.com/keystone-enclave/keystone-demo 44

  45. Conclusion ● Keystone: an Open Framework for Architecting TEEs ○ Customizable TEE for various threat models & workloads ● Keystone Plugins ○ Memory Management: free memory, dynamic resizing ○ Functionality: syscalls and muslibc support ○ Security: cache way partitioning ● Evaluation ○ Trade offs between performance, security, TCB, and functionality keystone-enclave.org 45

  46. Future Work ● TEE for Small Devices (e.g., embedded, microcontroller) ○ RV32, M/U-only ISA ● Formal Verification ○ Hardware, Security Monitor, and the Runtime ● Concurrent Multithreading ● More Plugins ○ Secure I/O, Sealing, Page Swapping, MEE ... ● More Front-end Support ○ RUST, Google Asylo, Microsoft OpenEnclave, ... 46

  47. Keystone Team 47

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The 25 Year Environment Plan 21 March 2018 Tees Valley Nature Partnership &amp; Your Tees

The 25 Year Environment Plan 21 March 2018 Tees Valley Nature Partnership &amp; Your Tees

A Green Future The 25 Year Environment Plan 21 March 2018 Tees Valley Nature Partnership &amp; Your Tees Catchment Partnership The plans vision It is this Governments ambition to leave our environment in a better that puts the

509 views • 12 slides
! Apps Apps RAM ! Ring 0 - 2 OS / Hypervisor OS / Hypervisor Remote Attestation Protected

! Apps Apps RAM ! Ring 0 - 2 OS / Hypervisor OS / Hypervisor Remote Attestation Protected

Keystone : An Open Framework for Architecting Trusted Execution Environments Dayeol Lee , David Kohlbrenner, Shweta Shinde, Krste Asanovic, Dawn Song Dept. of Electrical Engineering and Computer Sciences University of California, Berkeley

599 views • 30 slides
Tees-Swale: naturally connected Project area Tees-Swale project area 829 sq km Project

Tees-Swale: naturally connected Project area Tees-Swale project area 829 sq km Project

Tees-Swale: naturally connected Project area Tees-Swale project area 829 sq km Project rationale More, bigger, better and joined up The first priority is to enhance the quality of remaining wildlife habitat Project rationale

323 views • 30 slides
Architecting Java solutions for CICS Architecting Java solutions for CICS Course introduction

Architecting Java solutions for CICS Architecting Java solutions for CICS Course introduction

Architecting Java solutions for CICS Architecting Java solutions for CICS Course introduction Course introduction Reasons for hosting Java in CICS Requirements: Knowledge of transaction processing Experience of Java development What youll

757 views • 56 slides
Towards an Open Framework of E-Services for Translation Business, Training, and Research by the

Towards an Open Framework of E-Services for Translation Business, Training, and Research by the

Towards an Open Framework of E-Services for Translation Business, Training, and Research by the example of Terminology Services Tatiana Gornostay, Tilde Open framework of e-services for translation Open Based on open standards Free for

512 views • 8 slides
-Abhijit Mahajan Django web Framework is an open source Web 2.0 application framework

-Abhijit Mahajan Django web Framework is an open source Web 2.0 application framework

-Abhijit Mahajan Django web Framework is an open source Web 2.0 application framework written in Python which follows the model-view-controller architectural pattern. It was originally developed to manage several news-oriented

462 views • 35 slides
Tees Valley Nature Partnership Steering Group 18 th December 2019 Middlesbrough Football Club

Tees Valley Nature Partnership Steering Group 18 th December 2019 Middlesbrough Football Club

Tees Valley Nature Partnership 2019 Tees Valley Nature Partnership Steering Group 18 th December 2019 Middlesbrough Football Club Tees Valley Nature Partnership 2019 Nature and economy working together Support policies &amp; projects Embed a

342 views • 17 slides
The Role of Event Description in Architecting Dependable Systems Marcio S. Dias Debra J.

The Role of Event Description in Architecting Dependable Systems Marcio S. Dias Debra J.

The Role of Event Description in Architecting Dependable Systems Marcio S. Dias Debra J. Richardson djr@ics.uci.edu mdias@ics.uci.edu Information and Computer Science University of California, Irvine I CSE 2002 Workshop on Architecting

1.02k views • 25 slides
384966 Debbie Osborne d.osborne@tees.ac.uk 01642 738257 Firstly .. Thank you for agreeing to

384966 Debbie Osborne d.osborne@tees.ac.uk 01642 738257 Firstly .. Thank you for agreeing to

Prescribing from the Community Practitioners Formulary CCH3062-N Bernadette Martin B.Martin@tees.ac.uk 01642 384966 Debbie Osborne d.osborne@tees.ac.uk 01642 738257 Firstly .. Thank you for agreeing to mentor your student Mentor website

444 views • 9 slides
RAIC: Architecting Dependable Systems Through Redundancy and Just-In-Time Testing For The ICSE

RAIC: Architecting Dependable Systems Through Redundancy and Just-In-Time Testing For The ICSE

RAIC: Architecting Dependable Systems Through Redundancy and Just-In-Time Testing For The ICSE 2002 Workshop on Architecting Dependable Systems Orlando, Florida, USA Chang Liu, Debra J. Richardson Information And Computer Science University

840 views • 24 slides
TEES VALLEY OBC UPDATE FOR DARLINGTON SCRUTINY 25 TH OCTOBER 2018 JIM BUSBY AGENDA 1. Local

TEES VALLEY OBC UPDATE FOR DARLINGTON SCRUTINY 25 TH OCTOBER 2018 JIM BUSBY AGENDA 1. Local

TEES VALLEY OBC UPDATE FOR DARLINGTON SCRUTINY 25 TH OCTOBER 2018 JIM BUSBY AGENDA 1. Local Partnerships 2. Waste Management in the Tees Valley 3. OBC Summary and Content 4. Development of the Waste Management Strategy Policy Review

450 views • 16 slides
Op Open en Fo Fort rt Co Collins lins: : A framework for advancing transparency and

Op Open en Fo Fort rt Co Collins lins: : A framework for advancing transparency and

Op Open en Fo Fort rt Co Collins lins: : A framework for advancing transparency and solutions to complex problems Project Team: Patrick Niland, Telly Whitfield, Ph.D., Rebecca VanRegenmorter What is Open Data? Open data is data that

934 views • 34 slides
An Open Botnet Analysis Framework for An Open Botnet Analysis Framework for Automatic Tracking

An Open Botnet Analysis Framework for An Open Botnet Analysis Framework for Automatic Tracking

An Open Botnet Analysis Framework for An Open Botnet Analysis Framework for Automatic Tracking and Activity Visualization Automatic Tracking and Activity Visualization marco riccardi Italian Chapter - The Honeynet Project marco cremonini

393 views • 36 slides
Wildlife Group Puts County on Guard (Local Wildlife Sites in the Tees Valley) Jeremy

Wildlife Group Puts County on Guard (Local Wildlife Sites in the Tees Valley) Jeremy

Wildlife Group Puts County on Guard (Local Wildlife Sites in the Tees Valley) Jeremy Garside Tees Valley Wildlife Trust Middlesbrough's Local Wildlife Sites Wetlands Species Sites Woodlands Post-Industrial Grasslands Neutral

356 views • 21 slides
lld, a linker framework Presented by: Shankar Easwaran Qualcomm Innovation Center, Inc Open

lld, a linker framework Presented by: Shankar Easwaran Qualcomm Innovation Center, Inc Open

Open Source Open Possibilities lld, a linker framework Presented by: Shankar Easwaran Qualcomm Innovation Center, Inc Open Source Open Possibilities PAGE 1 Motivation Provide a necessary set of reusable libraries to create target specific

437 views • 10 slides
Proposed Merger of CCGs in County Durham and the Tees Valley Dr Neil OBrien, Chief Clinical

Proposed Merger of CCGs in County Durham and the Tees Valley Dr Neil OBrien, Chief Clinical

Proposed Merger of CCGs in County Durham and the Tees Valley Dr Neil OBrien, Chief Clinical Officer Darlington Clinical Commissioning Group Durham Dales, Easington and Sedgefield Clinical Commissioning Group Hartlepool and Stockton-on-Tees

473 views • 11 slides
Meltdown &amp; Spectre Attacks Overview An analogy CPU cache and use it as side channel

Meltdown &amp; Spectre Attacks Overview An analogy CPU cache and use it as side channel

Meltdown &amp; Spectre Attacks Overview An analogy CPU cache and use it as side channel Meltdown attack Spectre attack Microsoft Interview Question Stealing A Secret Secret: 7 Guard with Memory Eraser Restricted Room CPU

732 views • 30 slides
RECIPE : Converting Concurrent DRAM Indexes to Persistent-Memory Indexes Se Kwon Lee, Jayashree

RECIPE : Converting Concurrent DRAM Indexes to Persistent-Memory Indexes Se Kwon Lee, Jayashree

RECIPE : Converting Concurrent DRAM Indexes to Persistent-Memory Indexes Se Kwon Lee, Jayashree Mohan, Sanidhya Kashyap * , Taesoo Kim, Vijay Chidambaram *On the job market 1 Persistent Memory (PM) New storage class memory technology

1.01k views • 70 slides
Online Bigtable merge compaction Neal E. Young 1 Claire Mathieu Carl Staelin Arman Yousefia

Online Bigtable merge compaction Neal E. Young 1 Claire Mathieu Carl Staelin Arman Yousefia

Online Bigtable merge compaction Neal E. Young 1 Claire Mathieu Carl Staelin Arman Yousefia CNRS Paris Google Haifa UC Riverside UCLA Northeastern University, September 17, 2015 1 funded by faculty re$earch award BIGTABLE data storage

908 views • 57 slides
Ad-Hoc Problems Dr. Mattox Beckman University of Illinois at Urbana-Champaign Department of

Ad-Hoc Problems Dr. Mattox Beckman University of Illinois at Urbana-Champaign Department of

Introduction Games Strings and Such Time Wasters Ad-Hoc Problems Dr. Mattox Beckman University of Illinois at Urbana-Champaign Department of Computer Science Introduction Games Strings and Such Time Wasters Ad-Hoc Problems Your

548 views • 9 slides
DAWG : A Defense Against Cache Timing Attacks in Speculative Execution Processors Vladimir

DAWG : A Defense Against Cache Timing Attacks in Speculative Execution Processors Vladimir

DAWG : A Defense Against Cache Timing Attacks in Speculative Execution Processors Vladimir Kiriansky, Ilia Lebedev, Saman Amarasinghe, Srinivas Devadas, Joel Emer {vlk, ilebedev, saman, devadas, emer}@csail.mit.edu MICRO'18

949 views • 78 slides
Linux Performance Analysis New Tools and Old Secrets Brendan Gregg Senior Performance Architect

Linux Performance Analysis New Tools and Old Secrets Brendan Gregg Senior Performance Architect

Linux Performance Analysis New Tools and Old Secrets Brendan Gregg Senior Performance Architect Performance Engineering Team bgregg@netflix.com @brendangregg Porting these to Linux Massive Amazon EC2 Linux cloud Tens of thousands of

864 views • 75 slides
ROUNDERS (1998) CASINO ROYALE (2006) HAND RANKINGS HIGH CARD HAND RANKINGS PAIR HIGH CARD

ROUNDERS (1998) CASINO ROYALE (2006) HAND RANKINGS HIGH CARD HAND RANKINGS PAIR HIGH CARD

ROUNDERS (1998) CASINO ROYALE (2006) HAND RANKINGS HIGH CARD HAND RANKINGS PAIR HIGH CARD HAND RANKINGS TWO PAIR PAIR HIGH CARD HAND RANKINGS THREE OF A KIND TWO PAIR PAIR HIGH CARD HAND RANKINGS STRAIGHT THREE OF A KIND TWO PAIR

1.1k views • 106 slides
Dragonblood: A Security Analysis of WPA3s SAE Handshake Mathy Vanhoef and Eyal Ronen WAC

Dragonblood: A Security Analysis of WPA3s SAE Handshake Mathy Vanhoef and Eyal Ronen WAC

Dragonblood: A Security Analysis of WPA3s SAE Handshake Mathy Vanhoef and Eyal Ronen WAC Workshop @ CRYPTO, Santa Barbara, 17 August 2019. Background: Dragonfly in WPA3 and EAP-pwd = Password Authenticated Key Exchange (PAKE) Negotiate

1.04k views • 69 slides

More recommend