skee a lightweight secure kernel level execution
play

SKEE: A Lightweight Secure Kernel level Execution Environment for - PowerPoint PPT Presentation

Sep 11, 2022 •279 likes •543 views

SKEE: A Lightweight Secure Kernel level Execution Environment for ARM Ahmed M Azab, Kirk Swidowski, Rohan Bhutkar, Jia Ma, Wenbo Shen, Ruowen Wang, Peng Ning Samsung KNOX R&D, Samsung Research America Motivation Operating system kernels

  1. SKEE: A Lightweight Secure Kernel ‐ level Execution Environment for ARM Ahmed M Azab, Kirk Swidowski, Rohan Bhutkar, Jia Ma, Wenbo Shen, Ruowen Wang, Peng Ning Samsung KNOX R&D, Samsung Research America

  2. Motivation • Operating system kernels still suffer from exploits CVE ‐ 20XX ‐ XXXX - • Security tools Monitor and protect the kernel - May have large code base - May introduce vulnerabilities - Isolation is a key requirement for • hosting security tools 2 2/24/2016

  3. Motivation (cont.) • Previous approaches - Host security tools in hypervisors and hardware security features o Designed with different objectives o Increase TCB size, increase attack surface - Hypervisors and hardware security features may be compromised o Due to the vulnerabilities introduced by security tools o Worse than kernel being compromised o Undermine the overall system security 3 2/24/2016

  4. Secure Kernel ‐ level Execution Environment • Lightweight in ‐ kernel isolation - Run at the same privilege level as kernel - Safe from potential kernel vulnerabilities - No requirement of active involvement from higher privileged layers • Ability to inspect kernel state Full access to entire kernel memory - Event driven monitoring - • Secure context ‐ switching - Entry point exposed to the kernel yet secure from attacks 4 2/24/2016

  5. Scope • Assumptions The system is booted securely - The kernel code is validated and protected - No kernel code injection o Valid assumption using existing techniques (e.g., W^X, DEP, PXN) o • Threat model - All data attacks against the kernel are considered Including code ‐ reuse attacks and non ‐ control data modification o - SKEE guarantees a fully compromised kernel cannot: Revoke the isolation o Compromise the context switching o 5 2/24/2016

  6. SKEE Design • Basic idea - A new self ‐ protected virtual address space • Both address spaces are initialized at boot up time Secure boot is required - • Three basic requirements - Isolation - Secure context switching - Kernel monitoring and protection 6 2/24/2016

  7. Isolation • Create a protected address space - Instrument the kernel translation tables Carve out SKEE’s physical memory range o • Restrict kernel access to the MMU - Revoke write access to kernel translation tables Enforce W^X protection, DEP and PXN of user code o Remove op codes of certain instructions from kernel code - E.g., set TTBR value, disable the MMU o - The kernel is forced to request MMU operations from SKEE Inspected to guarantee the isolation o 7 2/24/2016

  8. Secure Context Switching • Atomic � Execution never returns to kernel while SKEE is accessible Potential attacks - Jump to the middle of the switch gate o Interrupt the switching logic execution o • Deterministic � The switch gate shows same behavior regardless of: Current system state - Input parameters - • Exclusive � The switch gate is the only entry point to SKEE 8 2/24/2016

  9. Secure Switching on 32 ‐ bit ARMv7 Memory management in ARMv7 • - Two translation table base registers: TTBR0 & TTBR1 TTBR holds the page table base, the same with CR3 in x86 o • Challenge - Cannot load values into TTBR0 & TTBR1 in kernel directly Compromise the isolation by loading unverified page tables o • Solution: Use dedicated registers for the kernel and SKEE - Valid technical assumption (Android linux kernel only uses TTBR0) o - Context switching is done by updating TTBCR.N No direct value loading to TTBR o Non ‐ zero value maps SKEE, zero value maps the kernel o 9 2/24/2016

  10. Secure Switching on 32 ‐ bit ARMv7 (Cont.) 10 2/24/2016

  11. ARMv7 Switch Gate • Lines 2 ‐ 5 - Disable interrupts • Lines 7 ‐ 10 Load TTBCR - • Lines 12 and 13 Invalidate the TLB - • Line 15 - Jumps to SKEE • Exit in reverse order 11 2/24/2016

  12. Atomic Switch Gate • Control flow change - Branching - Exceptions - Interrupts • Threat Skip interrupt disable - Use TLB cached code - • Solution Instrument the interrupt - handler Check TTBCR.N o Crash on non ‐ zero (SKEE is o exposed) 12 2/24/2016

  13. Deterministic and Exclusive Switch Gate • Deterministic - No reliance on input • Exclusive No TTBR0, TTBR1 or TTBCR - instructions exist in the kernel code 13 2/24/2016

  14. Secure Switching on 64 ‐ bit ARMv8 • Memory management in 64 ‐ bit ARMv8 Different virtual memory subranges for TTBR0 and TTBR1 - TTBR1: High address range; Typically used by kernel o TTBR0: Low address range; Typically used by user space o • Challenge TTBR0 and TTBR1 map mutually exclusive memory ranges - - Cannot dedicate either registers to SKEE • Solution - SKEE shares TTBR1 with the kernel Entry gate uses a special encoding - the Zero register (XZR) o Guarantee deterministic change of TTBR1 o 14 2/24/2016

  15. Secure Switching on 64 ‐ bit ARMv8 (cont.) • The presence of physical address 0x0 Provided by the hardware as a real physical address - Don’t need hypervisor support o - Provided by the virtualization layer as an intermediate physical address (IPA) Need hypervisor to remap IPA0 x0 to SKEE o Don’t require any “runtime” hypervisor involvements o 15 2/24/2016

  16. ARMv8 Entry Gate • Lines 2 ‐ 4 - Disable interrupts • Lines 6 ‐ 10 Save exiting TTBR1 - Load TTBR1 using XZR - • Lines 12 and 13 Invalidate the TLB - • Lines 15 and 16 - Jump to SKEE 16 2/24/2016

  17. ARMv8 Entry Gate • Atomic - Kernel cannot skip interrupt disable step - Jump to SKEE uses absolute address • Deterministic • Exclusive 17 2/24/2016

  18. ARMv8 Exit Gate • Lines 2 ‐ 5 - Memory padding - Pushing line 11 to the isolated page boundary • Line 7 - Mask interrupts • Lines 9 ‐ 11 - Reload kernel’s TTBR1 Lines 15 ‐ 17 • - Invalidate the TLB Lines 20 ‐ 23 • - Restore interrupts and return to kernel 18 2/24/2016

  19. ARMv8 Exit Gate • Line 11 - Load ttbr1 from stack - Can be exploited by attackers 19 2/24/2016

  20. ARMv8 Exit Gate • Page on top - Only accessible to SKEE • Page on bottom - Accessible to both SKEE and kernel 20 2/24/2016

  21. Fast Secure Switching using ASID Entire TLB invalidation • - Potential performance overhead Using a dedicated ASID for SKEE • - Non ‐ global mapping of SKEE memory - TLB entries will only be associated with a particular ASID - No need to flush the TLB on every context switch Global mapping of the switch gate • Accessible to both the kernel and SKEE - 21 2/24/2016

  22. Kernel Monitoring and Protection Control page table • - Make sure the page table is properly set up, with W^X, DEP and PXN on user Replace the MMU instruction with hooks to SKEE • - The hook will trap to SKEE - SKEE will check each operation • For hosting security tools - Trap critical kernel events - Inspect kernel memory 22 2/24/2016

  23. Performance • Secure context switching No TLB invalidation � ASID is used - 23 2/24/2016

  24. Performance (cont.) • Benchmark performance ARMv7 ARMv8 24 2/24/2016

  25. Thank you 2/24/2016 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its Verification Mads Dam KTH Royal Institute of Technology BISS spring school, Bertinoro 2018 The Goal Hypervisor Context switch: Fixed round-robin

1.16k views • 67 slides
Safe Loading A Foundation for Secure Execution of Untrusted Programs Mathias Payer, Tobias

Safe Loading A Foundation for Secure Execution of Untrusted Programs Mathias Payer, Tobias

Safe Loading A Foundation for Secure Execution of Untrusted Programs Mathias Payer, Tobias Hartmann, Thomas R. Gross Department of Computer Science ETH Zurich, Switzerland Motivation Application code Kernel 2 Motivation Application code

483 views • 30 slides
Container-based virtualization Process-level Extensively used in Lightweight virtualization

Container-based virtualization Process-level Extensively used in Lightweight virtualization

C NTR Lightweight OS Containers Jrg Thalheim, Pramod Bhatotia Pedro Fonseca Baris Kasikci USENIX ATC 2018 Container-based virtualization Process-level Extensively used in Lightweight virtualization production isolation Namespaces

250 views • 22 slides
Breaking the Lightweight Secure PUF: Understanding the Relation of Input Transformations and

Breaking the Lightweight Secure PUF: Understanding the Relation of Input Transformations and

Breaking the Lightweight Secure PUF: Understanding the Relation of Input Transformations and Machine Learning Resistance 18th Smart Card Research and Advanced Application Conference: CARDIS 2019 Nils Wisiol, Georg T. Becker, Marian Margraf,

952 views • 21 slides
Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M.

Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M.

Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M. Chinni, C.P. Wright, E. Zadok Stony Brook University http://www.fsl.cs.sunysb.edu/ Summary What is the design complexity of system transactions

288 views • 26 slides
Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in the Quantum Era (SPS G5448) February 5th, 2020 Christian Colombo Mark Vella Cryptographic Protocols Design Proofs to validate design against

467 views • 20 slides
Formal verification of low-level execution platforms Apps OS Hardware Host 1 Motivations

Formal verification of low-level execution platforms Apps OS Hardware Host 1 Motivations

Roberto Guanciale Estonian Winter School Day 02 Formal verification of low-level execution platforms Apps OS Hardware Host 1 Motivations Apps Crypto Service OS Hypervisor/ Separation Kernel Hardware Host 1 Motivations Separation

850 views • 63 slides
Outline Side and covert channels Transient execution CSci 5271 Introduction to Computer

Outline Side and covert channels Transient execution CSci 5271 Introduction to Computer

Outline Side and covert channels Transient execution CSci 5271 Introduction to Computer Security Transient execution and kernel isolation: Meltdown Day 11: Side Channels and Transient Execution Stephen McCamant Transient execution and kernel

496 views • 4 slides
Symbolic execution for binary-level security / 50 3 A number of shades of symbolic execution /

Symbolic execution for binary-level security / 50 3 A number of shades of symbolic execution /

Symbolic execution for binary-level security / 50 3 A number of shades of symbolic execution / / Sbastien Bardin & Richard Bonichon 20180409 CEA LIST 1 1,1,L Model Source qb int foo (int t ) { 0,1,L 0,1,L int y = t * t - 4 * t ;

567 views • 34 slides
Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1. About Think Lightweight 2. What are Lightweight Structures? 3. Industry Applications 4. Product Line Review 5. Think Lightweight Component

832 views • 43 slides
Beetle Family of Lightweight and Secure Authenticated Encryption Ciphers Avik Chakraborti 1 ,

Beetle Family of Lightweight and Secure Authenticated Encryption Ciphers Avik Chakraborti 1 ,

Introduction Motivation Specification for Beetle Hardware Implementation Results of Beetle Conclusions Beetle Family of Lightweight and Secure Authenticated Encryption Ciphers Avik Chakraborti 1 , Nilanjan Datta 2 , Mridul Nandi 3 and Kan

614 views • 32 slides
1 CPU Events: Interrupts and Exceptions CPU Events: Interrupts and Exceptions Protecting Entry

1 CPU Events: Interrupts and Exceptions CPU Events: Interrupts and Exceptions Protecting Entry

Processes and the Kernel Processes and the Kernel The kernel sets processes up process in private data data execution Processes, Protection and the Kernel: Processes, Protection and the Kernel: virtual contexts to address

540 views • 9 slides
BPF in-kernel virtual machine 1 BPF is Berkeley Packet Filter low level

BPF in-kernel virtual machine 1 BPF is Berkeley Packet Filter low level

BPF in-kernel virtual machine 1 BPF is Berkeley Packet Filter low level instruction set kernel infrastructure around it interpreter JITs maps helper functions Agenda status and new use cases architecture

680 views • 41 slides
Countering Kernel Rootkits with Lightweight Hook Protection Michal Sekletar College of

Countering Kernel Rootkits with Lightweight Hook Protection Michal Sekletar College of

Countering Kernel Rootkits with Lightweight Hook Protection Michal Sekletar College of Engineering and Computer Science Orlando, FL April 2, 2012 Michal Sekletar (University of Central Florida) April 2, 2012 1 / 14 Acknowledgment

177 views • 14 slides
CUB: A pattern of collective software design, abstraction, and reuse for kernel-level

CUB: A pattern of collective software design, abstraction, and reuse for kernel-level

CUB: A pattern of collective software design, abstraction, and reuse for kernel-level programming DUANE MERRILL, PH.D. NVIDIA RESEARCH What is CUB ? 1. A design model for collective kernel-level primitives How to make reusable software

1.14k views • 72 slides
A Lightweight Secure Cyber Foraging Infrastructure for Resource-Constrained Devices Sachin Goyal

A Lightweight Secure Cyber Foraging Infrastructure for Resource-Constrained Devices Sachin Goyal

A Lightweight Secure Cyber Foraging Infrastructure for Resource-Constrained Devices Sachin Goyal and John Carter School of Computing University of Utah 1 Todays Computing Environments Small, embedded, mobile devices Ubiquitous

245 views • 22 slides
Chapter 4: Processes Process Concept Process Scheduling Operations on Processes

Chapter 4: Processes Process Concept Process Scheduling Operations on Processes

Chapter 4: Processes Process Concept Process Scheduling Operations on Processes Cooperating Processes Interprocess Communication Communication in Client-Server Systems Operating System Concepts 4.1 Silberschatz, Galvin and

1.1k views • 38 slides
CSE 5306 Distributed Systems Processes Jia Rao http://ranger.uta.edu/~jrao/ 1 Processes in

CSE 5306 Distributed Systems Processes Jia Rao http://ranger.uta.edu/~jrao/ 1 Processes in

CSE 5306 Distributed Systems Processes Jia Rao http://ranger.uta.edu/~jrao/ 1 Processes in Distributed Systems In traditional OS, management and scheduling of processes are the main issues. Sharing the CPU, memory, I/O and other

1.04k views • 41 slides
Operating Systems Scheduling Lecture 8 Michael OBoyle 1 Scheduling We have talked

Operating Systems Scheduling Lecture 8 Michael OBoyle 1 Scheduling We have talked

Operating Systems Scheduling Lecture 8 Michael OBoyle 1 Scheduling We have talked about context switching an interrupt occurs (device completion, timer interrupt) a thread causes a trap or exception may need to choose a

511 views • 34 slides
+ Method Shells: avoiding conflicts on destructive class extensions

+ Method Shells: avoiding conflicts on destructive class extensions

+ Method Shells: avoiding conflicts on destructive class extensions by implicit context switches ! Wakana Takeshita and Shigeru Chiba The University of Tokyo ! + Application and Software ! 2

446 views • 17 slides
Processes & CPU Scheduling Sunday, January 19, 2020 Overview Processes primitives

Processes & CPU Scheduling Sunday, January 19, 2020 Overview Processes primitives

IN2140: Introduction to Operating Systems and Data Communication Operating Systems: Processes & CPU Scheduling Sunday, January 19, 2020 Overview Processes primitives for creation and termination states context switches

734 views • 51 slides
Processes 11/3/16 Recall: the kernels job Ensure that all running processes have reasonable

Processes 11/3/16 Recall: the kernels job Ensure that all running processes have reasonable

Processes 11/3/16 Recall: the kernels job Ensure that all running processes have reasonable access to system resources: CPU Memory IO devices Provide a lone view abstraction: each process should run as if it were the only one on

753 views • 33 slides
ECE 3574: Applied Software Design: Memory Management, Event-driven Code Today we are going to

ECE 3574: Applied Software Design: Memory Management, Event-driven Code Today we are going to

ECE 3574: Applied Software Design: Memory Management, Event-driven Code Today we are going to look at two simple approaches to replacing the C/C++ library heap allocator and then introduce event driven programming in the context of embedded

271 views • 25 slides
execution states with swapping Scheduling 3F. Execution State Model exit running 4A.

execution states with swapping Scheduling 3F. Execution State Model exit running 4A.

4/14/2017 execution states with swapping Scheduling 3F. Execution State Model exit running 4A. Introduction to Scheduling create 4B. Non-Preemptive Scheduling request 4C. Preemptive Scheduling allocate blocked ready 4D. Dynamic

306 views • 8 slides

More recommend