Online Proposers Day TWO DIFFERENT PROJECT IDEA CONTRIBUTIONS - - PowerPoint PPT Presentation
CELTIC-NEXT Online Proposers Day TWO DIFFERENT PROJECT IDEA CONTRIBUTIONS SYSTEMIC SW Universal Trusted PROTECTION Execution for cloud and endpoint SW for cloud and endpoint SW security enhancement total security SOLIDSHIELD
SOLIDSHIELD vincent@solidshield.com
SOLIDSHIELD vincent@solidshield.com
SOFTWARE SECURITY IS FIRST PRIORITY FOR FUTURE IOT BASED SYSTEM SECURITY TODAY 'S PAINPOINTS FOR SW PROTECTION):
www.celticplus.eu SYSTEMIC SW ONE CLICK SECURITY, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
IOT SoTA SOFTWARE ARE AT THE BEST AUTHENTICATED CAN BE REVERSED CAN BE DECOMPILED CAN BE TAMPERED TO TAMPER DATA
www.celticplus.eu SYSTEMIC SW ONE CLICK SECURITY, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
SYSTEMIC SW PROTECTIONS: ATTESTATION ENCRYPTION ANTI DUMP ANTI TAMPERING ALL THESE FOUR PROTECTION SET AT ONE CLICK COST ON BINARIES NO PERFORMANCE DEGRADATION AT RUNTIME UNIVERSAL SOLUTION
5
SOLIDSHIELD WORKS IN SW PROTECTION FOR A DECADE (DEFENSE AND TELECOM) SYSTEMIC (FOR INTEL) IS DERIVED FROM OUR CONTRIBUTION IN SENDATE TANDEM. WORKFLOW IS KEY FOR SUCCESS. WE NEED USE CASES AND MARKET INNER VIEWS OUR PLAN IS TO EXPAND SYSTEMIC TO IOT MARKETS (ARM, JAVA) AND DESIGN AD HOC SOLUTIONS TO MEET SPECIFIC MARKETS CONSTRAINTS. SPECIFICATIONS SHALL COME FROM POTENTIAL USERS. (CONSORTIUM MEMBERS TYPICALLY). TESTS SHALL BE DONE BY THEM TOO.
www.celticplus.eu SYSTEMIC SW ONE CLICK SECURITY, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
SOLIDSHIELD vincent@solidshield.com
7
www.celticplus.eu Universal Trusted Execution Environment, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
8
www.celticplus.eu Universal Trusted Execution Environment, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
TEE IS A SUPER STRONG BUT POORLY-USED IDEA PROS: IT BREAKS THE CHAIN OF PERFORMANCE<>EFFICIENCY PRO: CODE AND DATA INTEGRITY AND CONFIDIENTIALITY ARE MET CONS: REQUIRE A SECURITY ARCHITECT... VENDOR-SPECIFIC , NO COMPATIBILITY
Limited TCB Complete VM
9
www.celticplus.eu Universal Trusted Execution Environment, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
ONE SETUP WORKFLOW FOR BOTH TECHNOLOGIES NO CHANGE ON SOURCE CODE REQUIRED ONE SINGLE PROTECTED EXECUTABLE ENABLED FOR BOTH TECHNOLOGIES NO EFFORT FROM DEVELOPER. USE CODE INTERPRETATION AND ASYLO APIS FOR HARDWARE INDEPENDANCE + AUTOMATIC BINARY WRAPPING
10
www.celticplus.eu Universal Trusted Execution Environment, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
"TEE ARE NESCANT AND WILL EVOLVE ATTACKS ON TEES JUST REFLECT HOW MUCH THEY THREAT CYBER ACTIVISTS..."
11
FAU takes part of a long track of collaborative research program including SENDATE
publications:
SysTex ‘18
www.celticplus.eu Universal Trusted Execution Environment, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
12
PUBLICATIONS REFLECTING THE CONTRIBUTION IDEA: ARES ‘18 CONFERENCE, HAMBOURG, AUGUST 2018: UNIVERSAL TEE FOR SECURING SDN/NFV OPERATIONS HTTPS://DL.ACM.ORG/CITATION.CFM?DOID=3230833.3233256 SYSTEX ‘18 WORKSHOP, CO-LOCATED TO CCS CONFERENCE, TORONTO, OCTOBER 2018: TEESHIFT: PROTECTING CODE BY SELECTIVELY SELECTING FUNCTIONS INTO TEES (BEST-PAPER AWARD ) HTTPS://WWW.RESEARCHGATE.NET/PUBLICATION/328326614_TEESHIFT_PROTE CTING_CODE_CONFIDENTIALITY_BY_SELECTIVELY_SHIFTING_FUNCTIONS_INT O_TEES
www.celticplus.eu Universal Trusted Execution Environment, Vincent Lefebvre, SOLIDSHIELD, vincent@solidshield.com
13
Name: Vincent Lefebvre E-Mail: vincent@solidshield.com Telephone +33 0663579190 83 Bd Sadi Carnot, 06110 Le Cannet, France www.solidshield.com
www.tiny.cc/projectidea
Name: Tilo Müller E-Mail: tilo.mueller@cs.fau.de Telephone +49 9131 85 69904
www1.cs.fau.de
14
www.celticplus.eu office@celticplus.eu
Join Webex meeting Meeting number (access code): 956 667 108 Meeting password: Z5jiAfeH Join by phone +49-6925511-4400 Germany toll Global call-in numbers
7th December 14-15 CET