Work in progress: Exploring schedule-based side-channels in TrustZone-enabled real-time systems
Aguida, Mohamed Anis
MetadataShow full item record
M. A. Aguida and M. Hasan, "Work in Progress: Exploring Schedule-Based Side-Channels in TrustZone-Enabled Real-Time Systems," 2022 IEEE 28th Real-Time and Embedded Technology and Applications Symposium (RTAS), 2022, pp. 301-304, doi: 10.1109/RTAS54340.2022.00033.
Our research demonstrates the existence of side-channel information leaks in TrustZone-enabled real-time systems. Our algorithm can infer the critical tasks’ arrival times and pinpoint when the system switches between regular and secure execution modes. By precisely obtaining such timing information, an adversary could infer the task execution patterns inside the secure system — thus putting the system’s safety, security, and integrity at risk. Considering that secure enclaves such as TrustZone are used for executing security-critical functionalities, our findings will help designers be aware of side-channel vulnerabilities and assist them in designing better, leakage-proof systems.
Click on the DOI to access this article (may not be free).