dominance as a new trusted computing primitive for the iot
play

Dominance as a New Trusted Computing Primitive for the IoT Meng Xu - PowerPoint PPT Presentation

Nov 20, 2023 •3.68k likes •4.28k views

1 Dominance as a New Trusted Computing Primitive for the IoT Meng Xu (Georgia Tech) Manuel Huber (Fraunhofer AISEC) Zhichuang Sun (Northeastern University) Paul England (Microsoft Research) Marcus Peinado (Microsoft Research) Sangho Lee

  1. � 1 Dominance as a New Trusted Computing Primitive for the IoT Meng Xu (Georgia Tech) Manuel Huber (Fraunhofer AISEC) Zhichuang Sun (Northeastern University) Paul England (Microsoft Research) Marcus Peinado (Microsoft Research) Sangho Lee (Microsoft Research) Andrey Marochko (Microsoft Research) Dennis Mattoon (Microsoft Research) Rob Spiger (Microsoft) Microsoft Research - Cyber-Resilient Platform Program Stefan Thom (Microsoft)

  2. � 2 Large Scale IoT Deployments Have Arrived Industrial 4.0 Smart City Supply Chain

  3. � 3 Identical IoT Devices Deployed A widely deployed Air Quality Monitor

  4. � 4 Are We Ready For Large Scale IoT Attacks? Industrial 4.0 Smart City Supply Chain Can we recover a large number of rooted devices without manual intervention? Let’s think this through with a concrete example!

  5. � 5 The Tale of California Traffic Lights… Suppose that your company manages all the smart traffic lights across California. @ Dennis Macdonald—Getty Images

  6. The smart traffic lights are � 6 rolled out in major cities and managed by an IoT hub hosted on some cloud service.

  7. In normal cases these traffic � 7 lights send traffic condition reports to the IoT hub which replies with traffic policy.

  8. But what if an attacker exploits � 8 a software vulnerability or a weak password? Now all traffic lights in CA are controlled by a botnet.

  9. Today, our only option is to � 9 send field service workers to manually reset these devices… Which is not practical in such a large-scale deployment.

  10. Can We Do Better? Photo by Kate McGillivray @ CBC News 2017

  11. Can We Do Better? Photo by Kate McGillivray @ CBC News 2017

  12. � 12 Dominance in IoT Definition : We say t he hub dominates an IoT device if the hub can 1. choose arbitrary code 2. force the device to run it within a bounded amount of time .

  13. � 13 Dominance in IoT Definition : We say t he hub dominates an IoT device if the hub can 1. choose arbitrary code patched firmware 2. force the device to run it within a bounded amount of time . four hours of attack discovery

  14. � 14 Dominance under Powerful Adversaries IoT Application Software Stack Networking Firmware / Kernel TCB Hardware Cloud Hub Communication Channel IoT Device

  15. � 15 Hardware Primitives RWLatch : Read-Write Latch, blocks read and write to one or more storage regions until the next device reset WRLatch : Write Latch, blocks write accesses to one or more storage regions until the next device reset Storage AWDT : Authenticated watchdog timer, a watchdog timer that is deferred only with certificates issued by the hub.

  16. � 16 Get Dominance With Three Guarantees 3 1 2 Device Reset Cider Bootloader Firmware Running Guarantee 1 Guarantee 2 Guarantee 3 Whenever the device is reset, Cider bootloader transfers The hub may unconditionally it must boot into an unaltered control to a firmware that is force a device to reset within Cider bootloader. approved by the hub. a time bound.

  17. � 17 Isolation In Time 3 1 2 Device Reset Cider Bootloader Firmware Running Isolation In Time : Alternating the execution of trusted and untrusted code in time.

  18. � 18 Guarantee 1: Reset into Unaltered Bootloader blk 0 blk 2 Cider Bootloader blk 874 WRLatch : Write Latch, blocks write accesses to one or more storage blk 2568 regions until the next device reset blk 35336 Untrusted Firmware blk 262144 Storage Layout

  19. � 19 Guarantee 2: Firmware Attestation & Patching RWLatch : Read-Write Cider Bootloader Firmware Running Latch, blocks read and write to one or more storage regions until the next device reset The attestation key is only consumed in Cider Bootloader

  20. � 20 Guarantee 2: Firmware Attestation & Patching • Networking Stack is NOT part of our TCB. • Isolate the networking stack into a recovery module. • Treat the recovery module like the firmware, i.e., run it with all protections (RWLatch, WRLatch, AWDT) enabled.

  21. � 21 Guarantee 2: Firmware Attestation & Patching • Networking only when necessary (in our optimized scheme). • In normal circumstances when the firmware is cooperating, Cider does not involve boot-time networking. • Firmware attestation and patching is required only when the hub is questioning the device firmware integrity. For details, please refer to our paper.

  22. � 22 Guarantee 3: Hub-Enforced Unconditional Reset Sorry, not happening Sorry, not happening Sorry, not happening Sorry, not happening Nvm, you are starting in 10 minutes anyway… …… What ???!!! I have restarted! Told you so, now patch yourself! Sorry, not happening Once Rooted, Forever Rooted Rooted and Recovered with Cider

  23. � 23 Trial: Conventional Watchdog Timer (WDT) • Popular among IoT devices • Reliability Guarantee against buggy IoT firmware that hangs occasionally

  24. � 24 Trial: Conventional Watchdog Timer (WDT) MOV REG1, 0xdeadbeef MOV REG1, 0xdeadbeef MOV REG1, 0xdeadbeef MOV REG1, 0xdeadbeef Firmware Running

  25. � 25 Trial: Conventional Watchdog Timer (WDT) Device Reset Firmware Hangs Timer Expired

  26. � 26 Security Issue of WDT MOV REG1, 0xdeadbeef MOV REG1, 0xdeadbeef MOV REG1, 0xdeadbeef MOV REG1, 0xdeadbeef Rooted Firmware Running Security Issue Conventional watchdog timer can be serviced by attacker as well given it has full control over the firmware.

  27. � 27 Solution: Authenticated Watchdog Timer ( | ) ( | ) Firmware Running

  28. � 28 Solution: Authenticated Watchdog Timer Rooted Device Reset Firmware Running Timer Expired Guarantee 3 The hub may unconditionally force a device to reset within a time bound.

  29. � 29 Implementing Authenticated Watchdog Timer • New Concept , no commodity AWDT hardware available • eAWDT : Attach an external AWDT built out of MCU • STM32L053R8 (cost < $3) • ATECC608A + ATtiny412 (cost < $1) • Repurpose existing hardware • TrustZone • BCM Secure Physical Timer • Memory Protection Unit For details, please refer to our paper.

  30. � 30 Prototypes SolidRun Raspberry Pi STMicroelectronics HummingBoard Edge Compute Module 3 Nucleo-L476RG (HBE) (CM3) (NL476RG) $240 $120 $15

  31. � 31 Prototypes WRLatch RWLatch AWDT eAWDT SolidRun eMMC power-on Built-in CAAM TrustZone HummingBoard Edge write protection Crypto Module Raspberry Pi eMMC power-on OPTIGA SLB 9670 SPT + EL3 External AWDT Compute Module 3 write protection (Any TPM 2.0 chip) STMicroelectronics MPU Firewall MPU Firewall MPU + IWDG Nucleo-L476RG Summary: The hardware primitives are mostly available on the three IoT boards. For those that are not available, they can be obtained and plugged into the board easily with low cost.

  32. � 32 Evaluation: Software Compatibility Device Firmware Compatible Windows IoT Core HBE Debian Raspbian CM3 Buildroot FFT (Bare-metal app) NL476RG TLC (Bare-metal app) Summary: Cider is compatible with common firmware and bare-metal applications that run on the tested boards.

  33. � 33 Evaluation: Performance - Boot Time Config HBE CM3 NL476RG Baseline (w/o Cider) 0.98 1.25 0.01 Normal case (w/ Cider) 1.25 +0.27 1.73 +0.48 4.35 +4.34 Attestation & Patching 15.60 +14.60 20.80 +19.50 30.20 +30.20 Summary: The additional boot time under normal circumstances is spent on firmware integrity checking. In the case of attestation and patching, the boot time is affected by the size of the patch.

  34. � 34 Evaluation: Performance - Runtime Delay Config HBE CM3 NL476RG ± 0.54% ± 0.97% ± 0.30% 1min Fetching Interval 0.28% 0.32% 0.64% ± 0.53% ± 0.58% ± 0.26% 5min Fetching Interval 0.15% 0.09% 0.16% Summary: Cider (ticket fetching) incurs negligible runtime overhead.

  35. � 35 Discussion: Minimal Requirements on Hardware Provide a solution that is not only simple in software complexity, but more importantly, requires a minimal hardware TCB .

  36. � 36 Discussion: Minimal Requirements on Hardware Runtime Isolation Isolation in Time Multi-threading (CPU slicing, TLB flushes, etc) Latches (RWLatch, WRLatch) Ring-0/1/2/3, privilege levels (as a social norm) Page tables, Memory Management Units (MMU) Authenticated Watchdog Timer Interrupts, context switches Vulnerable to side-channels, spectre, …, Simplicity is the key: Cider is immune to many types of attacks on hardware speculative execution and common side- (lessons learned from Day 1 Session 1) channel attacks and is perfect for providing a security cornerstone for IoT.

  37. � 37 Conclusion • Dominance is necessary in the presence of large-scale industrial IoT deployments: we need to return thousands of devices to their original missions after being compromised. • Cider is a practical scheme that enforces dominance on IoT devices via three guarantees: boot to Cider, firmware attestation & patching, unconditional reset. • Evaluation shows that Cider is compatible with a wide range of IoT boards and firmware while introducing negligible overhead.

  38. � 38 Q & A

  39. � 39

  40. � 40 Why not Using IPMI ?

  41. � 41 Q : How to update thousands of machines in a data center? A : Haven’t you heard about the magical Intelligent Platform Management Interface? They even run Minix OS in it!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and

Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and

Computer S ecurity: Principles and Practice Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and Multilevel Security First Edition by William S tallings and Lawrie Brown Lecture slides by Lawrie

636 views • 40 slides
Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal

Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal

Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal Holloway, University of London c.mitchell@rhul.ac.uk http://www.isg.rhul.ac.uk/~cjm Contents What is trusted computing? The TCG TCG

1.43k views • 114 slides
Terra: A Virtual Machine-Based Platform for Trusted Computing by Garfinkel et al. (Some slides

Terra: A Virtual Machine-Based Platform for Trusted Computing by Garfinkel et al. (Some slides

Terra: A Virtual Machine-Based Platform for Trusted Computing by Garfinkel et al. (Some slides taken from Jason Franklins 712 lecture, Fall 2006) Trusted Computing Hardware What can you do if you have trusted hardware?

315 views • 27 slides
Review What is Computing? Primitive Shapes Occupations in CS point What can be

Review What is Computing? Primitive Shapes Occupations in CS point What can be

Review What is Computing? Primitive Shapes Occupations in CS point What can be Programmed? line Creative Computing triangle Processing quad Downloading Processing rect Sketchpad ellipse

335 views • 19 slides
SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson

SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson

SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson Research Security / Lund University 1 2020-02-28 B. Smeets LiTH course Goal of this lecture Understand trusted computing and its purpose Threats

1.42k views • 65 slides
SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson

SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson

SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson Research Security / Lund University 1 2019-03-01 B. Smeets LiTH course Goal of this lecture Understand trusted computing and its purpose Threats

794 views • 66 slides
Introduction to Trusted Computing Pieter Maene , Johannes G otzfried, Ruan de Clercq, Tilo M

Introduction to Trusted Computing Pieter Maene , Johannes G otzfried, Ruan de Clercq, Tilo M

Introduction to Trusted Computing Pieter Maene , Johannes G otzfried, Ruan de Clercq, Tilo M uller, Felix Freiling, and Ingrid Verbauwhede 1 KU Leuven/COSIC, Belgium 2 FAU Erlangen-N urnberg, Germany January 31, 2017 Trusted Computing 2

723 views • 35 slides
Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi School of Computing National University of Singapore PETS 2017 Privacy-Preserving Computation with Trusted

477 views • 34 slides
1 Dominance Frontiers Revisited Dominance Frontiers and SSA Suppose that node 3 defines variable

1 Dominance Frontiers Revisited Dominance Frontiers and SSA Suppose that node 3 defines variable

Machinery for Placing -Functions Dominance Frontier Example entry Recall Dominators DF(d) = {n | p pred(n), d dom p and d !sdom n} d dom i if all paths from entry to node i include d Nodes in Dom(5) d dom i d {5, 6, 7, 8}

265 views • 4 slides
for TPM API Aybek Mukhamedov, Andy Gordon and Mark Ryan Trusted Platform Module Trusted

for TPM API Aybek Mukhamedov, Andy Gordon and Mark Ryan Trusted Platform Module Trusted

Towards Verified C specification for TPM API Aybek Mukhamedov, Andy Gordon and Mark Ryan Trusted Platform Module Trusted Computing, an initiative by major IT vendors Functions: integrity measurement, reporting &amp; protected storage

374 views • 16 slides
Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD

Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD

Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD student at distributed systems group, TU Braunschweig, Germany Research area: trusted execution, distributed systems Advisor: Rdiger Kapitza

939 views • 12 slides
Multidimensional Social Welfare Dominance with 4 th Order Derivatives of Utility Christophe

Multidimensional Social Welfare Dominance with 4 th Order Derivatives of Utility Christophe

Multidimensional Social Welfare Dominance with 4 th Order Derivatives of Utility Christophe Muller Aix-Marseille School of Economics August 2014 conf 1 1. Dominance Poverty, Inequality, Social Welfare Robust dominance judgments:

491 views • 27 slides
Sancus 2.0: Open-Source Trusted Computing for the IoT Jan Tobias Mhlberg

Sancus 2.0: Open-Source Trusted Computing for the IoT Jan Tobias Mhlberg

Sancus 2.0: Open-Source Trusted Computing for the IoT Jan Tobias Mhlberg jantobias.muehlberg@cs.kuleuven.be imec-DistriNet, KU Leuven, Celestijnenlaan 200A, B-3001 Belgium FOSDEM, Brussels, February 2018 Joint work with Job Noorman, Jo Van

815 views • 46 slides
Towards Trusted Cloud Computing Rodrigo Rodrigues Nuno Santos Krishna P. Gummadi MPI-SWS

Towards Trusted Cloud Computing Rodrigo Rodrigues Nuno Santos Krishna P. Gummadi MPI-SWS

Towards Trusted Cloud Computing Rodrigo Rodrigues Nuno Santos Krishna P. Gummadi MPI-SWS Abstract such as Amazons EC2, the provider hosts virtual ma- chines (VMs) on behalf of its customers, who can do Cloud computing infrastructures

424 views • 5 slides
Questions? Static Semantics Primitive types First exercise is online: Primitive value

Questions? Static Semantics Primitive types First exercise is online: Primitive value

Questions? Static Semantics Primitive types First exercise is online: Primitive value can not be decomposed into simpler http://www.win.tue.nl/~mvdbrand/courses/GLT/1112/ values Deadline 17 th of October Primitive type is a type

210 views • 9 slides
A BAD DREAM: SUBVERTING TRUSTED PLATFORM MODULE WHILE YOU ARE SLEEPING Seunghun Han, Wook Shin,

A BAD DREAM: SUBVERTING TRUSTED PLATFORM MODULE WHILE YOU ARE SLEEPING Seunghun Han, Wook Shin,

A BAD DREAM: SUBVERTING TRUSTED PLATFORM MODULE WHILE YOU ARE SLEEPING Seunghun Han, Wook Shin, Jun-Hyeok Park, and HyoungChun Kim, National Security Research Institute BACKGROUND Trusted Computing Group (TCG) Trusted Platform Module

375 views • 19 slides
Model Checking as A Reachability Problem Moshe Y. Vardi Rice University Engines of Progress:

Model Checking as A Reachability Problem Moshe Y. Vardi Rice University Engines of Progress:

Model Checking as A Reachability Problem Moshe Y. Vardi Rice University Engines of Progress: Semiconductor Technology Gordon Moore (co-founder of Intel) predicted in 1965 that the transistor density of semiconductor chips would double

486 views • 38 slides
video to text task Jia Chen 1 , Shizhe Chen 2 , Qin Jin 2 , Alexander Hauptmann 1 1 Carnegie Mellon

video to text task Jia Chen 1 , Shizhe Chen 2 , Qin Jin 2 , Alexander Hauptmann 1 1 Carnegie Mellon

INF entrance to TRECVID2018 video to text task Jia Chen 1 , Shizhe Chen 2 , Qin Jin 2 , Alexander Hauptmann 1 1 Carnegie Mellon University 2 Renmin University of China Content Recap and what's new Network architecture Limitation of

363 views • 14 slides
Lattice Cryptography: Introduction and Open Problems Daniele Micciancio Department of Computer

Lattice Cryptography: Introduction and Open Problems Daniele Micciancio Department of Computer

Lattice Cryptography: Introduction and Open Problems Daniele Micciancio Department of Computer Science and Engineering University of California, San Diego August 2015 Daniele Micciancio (UCSD) Lattice Cryptography: Introduction and Open

1.21k views • 91 slides
Centaur Verification Approach Jared Davis, Warren Hunt, Jr., Anna Slobodova, Sol Swords Bob

Centaur Verification Approach Jared Davis, Warren Hunt, Jr., Anna Slobodova, Sol Swords Bob

Centaur Verification Approach Jared Davis, Warren Hunt, Jr., Anna Slobodova, Sol Swords Bob Boyer, Gary Byers, Matt Kaufmann, Robert Krug November, 2010 Computer Sciences Department Centaur Technology, Inc. University of Texas 7600-C N.

576 views • 32 slides
Basics of Complexity Complexity = resources time space ink gates energy

Basics of Complexity Complexity = resources time space ink gates energy

Basics of Complexity Complexity = resources time space ink gates energy Complexity is a function Complexity = f (input size) Value depends on: problem encoding adj. list vs. adj matrix model of

326 views • 17 slides
Mental Health Adult Pre-Charge Diversion Program Agenda Why Pre-Charge Diversion? Item 1 Item 1

Mental Health Adult Pre-Charge Diversion Program Agenda Why Pre-Charge Diversion? Item 1 Item 1

Mental Health Adult Pre-Charge Diversion Program Agenda Why Pre-Charge Diversion? Item 1 Item 1 Program Development Item 2 Item 2 Program Description &amp; Criteria Item 3 Item 3 Service Process Item 4 Item 4 Outcomes &amp; Future

217 views • 18 slides
TESTING EMBEDDED SYSTEMS Itamar Hassin Fosdem 2016 @itababy SUBJECTS COVERED Unit

TESTING EMBEDDED SYSTEMS Itamar Hassin Fosdem 2016 @itababy SUBJECTS COVERED Unit

TESTING EMBEDDED SYSTEMS Itamar Hassin Fosdem 2016 @itababy SUBJECTS COVERED Unit testing (Unity) BDD (Cucumber) as a front-end for functional &amp; acceptance tests Orchestrating tests across multiple targets CHALLENGES

800 views • 48 slides
On linear output regulation: data-driven, hybrid, optimal, and more! Sergio Galeani joint work

On linear output regulation: data-driven, hybrid, optimal, and more! Sergio Galeani joint work

On linear output regulation: data-driven, hybrid, optimal, and more! Sergio Galeani joint work with (data-driven) D. Carnevale, M. Sassano, A. Serrani HYBRID DYNAMICAL SYSTEMS: OPTIMIZATION, STABILITY AND APPLICATIONS, Trento, January 9-11,

419 views • 31 slides

More recommend