rustzone writing trusted applications in rust
play

RustZone: Writing Trusted Applications in Rust Eric Evenchick - PowerPoint PPT Presentation

Oct 18, 2023 •534 likes •847 views

RustZone: Writing Trusted Applications in Rust Eric Evenchick Black Hat Asia 2018 About Me Principal Research Consultant @ Atredis Partners Founder, Developer of Open Source Hardware Things @ Linklayer Labs Outline Trusted

  1. RustZone: Writing Trusted Applications in Rust Eric Evenchick Black Hat Asia 2018

  2. About Me • Principal Research Consultant @ Atredis Partners • Founder, Developer of Open Source Hardware Things @ Linklayer Labs

  3. Outline • Trusted Execution Environments • TrustZone • TEE Problems • Rust • Rust + TrustZone • Demo • Questions

  4. Trusted Execution Environments

  5. What? • An isolated environment within a processor for performing secure operations • Segmentation of code, data, and hardware access • Combination of hardware features and software

  6. Today’s TEEs • Hardware: • AMD: Platform Security Processor • Intel: Trusted Execution Technology, Software Guard Extensions (SGX) • ARM: TrustZone • Software: • Trustonic Kinibi • Qualcomm QSEE • OP-TEE

  7. Use Cases • Authentication • Android GateKeeper • Financial Applications • Secure Boot • DRM • WideVine • An additional layer of protection from the host OS • Protect the system from the user L

  8. TrustZone

  9. The TrustZone TEE • The ARM TEE • Normal and Secure Worlds • Normal World: Rich OS and applications (Linux, Android, QNX, etc…) • Secure World: Limited operating system and Trusted Applications • Processor can switch between two worlds • Configure processor to restrict access to resources

  10. TrustZone in Practice http://genode.org/documentation/articles/trustzone

  11. TEE Problems

  12. TEE OS Protections • ASLR is Rare • No Stack Canaries or Guard Pages • Secure World has fewer protections than Normal World? • No High Level Language Support, we must write C!

  13. Writing (good) C is Hard • Common Memory Problems • Buffer overflows • Use after free • Type Issues • Void means nothing, and everything! • Limited Help from Compiler • Programmers can do Silly Things • memcpy, strcpy, sprintf, etc…

  14. Example: WideVine Trusted Application • DRM Implementation for Android • Undocumented Command with Buffer Overflow • End Result: Arbitrary Code Execution in Secure World • More info: http://bits- please.blogspot.ca/2016/05/qsee- privilege-escalation-vulnerability.html

  15. Example: Samsung OTP Buffer Overflow • Service in Normal World to generate a One-Time Password (OTP) • Any user can access this service! • Trusted Application parses request leading to stack buffer overflow

  16. Rust

  17. What’s Rust? • New systems programming language • In development since 2010, sponsored by Mozilla • Works for embedded: • Works without libc • Compiles to bytecode • No garbage collection or runtime • Raw memory access

  18. Why Rust? • Compile time memory safety checks • Memory ownership and borrow checking • Find bugs at compile time, not runtime • eg, match • Good tools, getting better • Great C Foreign Function Interface!

  19. Rust / C FFI • Call C from Rust and Call Rust from C • Need unsafe blocks for: 1. Dereferencing a raw pointer 2. Calling an unsafe function or method 3. Accessing or modifying a mutable static variable 4. Implementing an unsafe trait • Goal: limit unsafe code

  20. Learning Rust • The Rust Book: https://doc.rust-lang.org/book/ • Paper version soon: https://nostarch.com/Rust • Rust by Example: https://rustbyexample.com/ • Julia Evans’ Blog: https://jvns.ca/categories/rust/

  21. Rust + TrustZone

  22. Step 1: Get an OS • Need an OS to run in the Secure World • OP-TEE • Free and Open Source • Implementations for many platforms, including QEMU • Well Documented • https://www.op-tee.org/

  23. Step 2: Generate Rust Bindings • We need Rust bindings for OP-TEE’s API • bindgen to the rescue! void TEE_MACInit( TEE_OperationHandle operation, const void *IV, uint32_t IVLen); bindgen extern "C" { pub fn TEE_MACInit(operation: TEE_OperationHandle, IV: *const c_types::c_void, IVLen: u32); }

  24. Step 3: Write a Rust Library • Yes, a library . • Need to implement 5 functions: • TA_CreateEntryPoint • TA_DestroyEntryPoint • TA_OpenSessionEntryPoint • TA_CloseSessionEntryPoint • TA_InvokeCommandEntryPoint

  25. Step 3: Write a Rust Library pub fn InvokeCommandEntryPoint(_sessionContext: * mut c_types::c_void, commandID: u32 , _paramTypes: u32 , params: & mut [optee::TEE_Param; 4 ]) -> optee::TEE_Result { ta_print!("Rust TA InvokeCommandEntryPoint"); match commandID { 0 => { unsafe {params[ 0 ].value.as_mut().a += 1 }; ta_print!("Incremented Value"); }, 1 => { unsafe {params[ 0 ].value.as_mut().a -= 1 }; ta_print!("Decremented Value"); }, _ => { return optee::TEE_ERROR_BAD_PARAMETERS; } } return optee::TEE_SUCCESS; }

  26. Step 4: Compile, Link, Sign Compiled Rust Library Compiled TA Linker TA ELF sign.py Header libutee, libmpa, libutil OP-TEE Linker Signed TA Script

  27. Demo

  28. Conclusions

  29. Conclusions • TEEs are useful, but have the usual issues • Rust is an potential replacement for C with some added benefits • Should you write your Trusted Applications in Rust?

  30. Thanks! Questions? eric@evenchick.com @ericevenchick https://github.com/ericevenchick/rustzone

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust This talk Why? Why Rust? Binginds Dynamic library Web service example Docker example Compile and distribute

336 views • 14 slides
Idiomatic Rust Writing concise and elegant Rust code Matthias Endler Dsseldorf, Germany

Idiomatic Rust Writing concise and elegant Rust code Matthias Endler Dsseldorf, Germany

Idiomatic Rust Writing concise and elegant Rust code Matthias Endler Dsseldorf, Germany Backend Engineer at Website performance Hot Chocolate matthiasendler mre matthias-endler.de EXPECTATION... REALITY... Python The Zen

1.23k views • 44 slides
Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust

Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust

http://talks.edunham.net/scale15x Rust 101 E. Dunham @qedunham Intro Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust Improve Rust E. Dunham @qedunham March 5, 2017

865 views • 75 slides
The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You

The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You

The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You Thank you to rust-lang.org for providing content and examples! Overview The sales pitch Use cases The Rust language Other Languages

1.18k views • 63 slides
www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29,

www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29,

www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29, 2019 CIS 352 Rust Overview 1 / 1 CIS 352 Rust Overview 2 / 1 References Sample code: Factorial, 1 The Rust Programming Language by S. Klabnik and

589 views • 7 slides
Using Rust on RIOT OS Christian M. Ams uss <ca@etonomy.org> 2019-09-05 RIOT Summit,

Using Rust on RIOT OS Christian M. Ams uss <ca@etonomy.org> 2019-09-05 RIOT Summit,

Using Rust on RIOT OS Christian M. Ams uss <ca@etonomy.org> 2019-09-05 RIOT Summit, Helsinki Outline The Rust language and ecosystem Rust on embedded systems Rust on RIOT Simple things: functions and variables fn

804 views • 24 slides
Embedded Rust, by example of RIOT-OS applications Christian M. Ams uss <ca@etonomy.org>

Embedded Rust, by example of RIOT-OS applications Christian M. Ams uss <ca@etonomy.org>

Embedded Rust, by example of RIOT-OS applications Christian M. Ams uss <ca@etonomy.org> 2018-11-27 Embedded Devices 10kB 1MB ROM 1kB 100kB RAM Typical hardware: ARM Cortex-M3, eg. STM32 Embedded Devices

416 views • 28 slides
Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q.

Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q.

Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q. What is Rust? A. High-level code, low-level performance Q. Why should I care? 3 Decisions GC Control, flexibility

1.15k views • 67 slides
Tips for Writing a Winning Application August 14, 2019 About MEEA The Trusted Source on Energy

Tips for Writing a Winning Application August 14, 2019 About MEEA The Trusted Source on Energy

Inspiring Efficiency Awards Tips for Writing a Winning Application August 14, 2019 About MEEA The Trusted Source on Energy Efficiency We are a nonprofit membership organization with 160+ members, including: Utilities Research

598 views • 24 slides
#02: Mining Before we start Download and install Rust if you want to code along:

#02: Mining Before we start Download and install Rust if you want to code along:

Blockchain In Rust #02: Mining Before we start Download and install Rust if you want to code along: https://www.rust-lang.org/ If youre on Windows, youll also need Microsoft Visual C++ Build Tools 2017:

372 views • 11 slides
Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD

Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD

Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD student at distributed systems group, TU Braunschweig, Germany Research area: trusted execution, distributed systems Advisor: Rdiger Kapitza

939 views • 12 slides
8. WinForms Applications Writing native Windows programs Overview Windows Applications

8. WinForms Applications Writing native Windows programs Overview Windows Applications

8. WinForms Applications Writing native Windows programs Overview Windows Applications Events and event handlers Layered (tiered) model of software Focus Form designer and controls Dialog boxes and forms Delegates

268 views • 22 slides
sled and rio Rust DB + io_uring = @sadisticsystems sled.rs who am I building Rust databases

sled and rio Rust DB + io_uring = @sadisticsystems sled.rs who am I building Rust databases

sled and rio Rust DB + io_uring = @sadisticsystems sled.rs who am I building Rust databases since 2014 previously worked at some social media & infrastructure companies for fun, I build and destroy distributed databases

1.58k views • 52 slides
Finding 1-Day Vulnerabilities in Trusted Applications using Selective Symbolic Execution Marcel

Finding 1-Day Vulnerabilities in Trusted Applications using Selective Symbolic Execution Marcel

Finding 1-Day Vulnerabilities in Trusted Applications using Selective Symbolic Execution Marcel Busch , Kalle Dirsch 2020-02-23 Friedrich-Alexander-University Erlangen-Nrnberg, Germany BAR20 BAR20 Motivation How secure are

352 views • 16 slides
TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware

TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware

TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware Engineer @ Engineers Gate Real-time trading systems Scalable data infrastructure Python/C++/Rust developer MOTIVATION Rust focuses on memory

1.47k views • 100 slides
11-823 Conlanging Writing Writing Systems Different Writing Systems What makes a writing

11-823 Conlanging Writing Writing Systems Different Writing Systems What makes a writing

11-823 Conlanging Writing Writing Systems Different Writing Systems What makes a writing system Standardization vs Historical artifacts Constructed Writing Systems Computing and its influence on writing Types of Writing

528 views • 24 slides
High-performance Python-C++ bindings with PyPy and Cling Wim Lavrijsen (LBNL) and Aditi Dutta

High-performance Python-C++ bindings with PyPy and Cling Wim Lavrijsen (LBNL) and Aditi Dutta

C O M P U T A T I O N A L R E S E A R C H D I V I S I O N High-performance Python-C++ bindings with PyPy and Cling Wim Lavrijsen (LBNL) and Aditi Dutta

252 views • 22 slides
Accessing and using weather data in OCaml Hez Carty - OCaml 2013 MDA Information Systems LLC

Accessing and using weather data in OCaml Hez Carty - OCaml 2013 MDA Information Systems LLC

Accessing and using weather data in OCaml Hez Carty - OCaml 2013 MDA Information Systems LLC Weather and OCaml OCaml - why and where? Library bindings Highs and lows Why OCaml The usual reasons Functional (when you want

503 views • 13 slides
Network Coding-Aware Queue Network Coding Aware Queue Management for Unicast Flows over Coded

Network Coding-Aware Queue Network Coding Aware Queue Management for Unicast Flows over Coded

Network Coding-Aware Queue Network Coding Aware Queue Management for Unicast Flows over Coded Wireless Networks Coded Wireless Networks Hlya Sefero lu, Athina Markopoulou University of California Irvine University of California, Irvine

287 views • 24 slides
Just-in-time Length Specialization of Dynamic Vector Code Justin Talbot Zachary DeVito Pat

Just-in-time Length Specialization of Dynamic Vector Code Justin Talbot Zachary DeVito Pat

Just-in-time Length Specialization of Dynamic Vector Code Justin Talbot Zachary DeVito Pat Hanrahan Tableau Research Stanford University (ARRAY 2014) Tableau Tableau + R Riposte Bytecode interpreter and tracing JIT compiler for R

670 views • 50 slides
Mathematical foundations: (2) Classical first-order logic George Boole David Hilbert

Mathematical foundations: (2) Classical first-order logic George Boole David Hilbert

Mathematical foundations: (2) Classical first-order logic George Boole David Hilbert Gottlob Frege Reference [1] Jean van Heijenoort, editor. From Frege to Gdel: A Source Book in Mathematical Logic, 1879-1931. Harvard

825 views • 81 slides
Dynamic Languages need Dynamic Compilers Maxime Chevalier-Boisvert mloc.js 2014 Introduction

Dynamic Languages need Dynamic Compilers Maxime Chevalier-Boisvert mloc.js 2014 Introduction

Dynamic Languages need Dynamic Compilers Maxime Chevalier-Boisvert mloc.js 2014 Introduction PhD candidate at the Universit de Montral, prof. Marc Feeley Research: compilers, optimizing dynamic languages, JS This talk is about:

933 views • 74 slides
Computer Science & Engineering 423/823 Introduction Design and Analysis of Algorithms Types

Computer Science & Engineering 423/823 Introduction Design and Analysis of Algorithms Types

CSCE423/823 Computer Science & Engineering 423/823 Introduction Design and Analysis of Algorithms Types of Graphs Lecture 03 Elementary Graph Algorithms (Chapter 22) Representations of Graphs Elementary Graph Algorithms Stephen

735 views • 29 slides
P

P

P

425 views • 10 slides

More recommend