Skip to Main content Skip to Navigation
Conference papers

EmLog: Tamper-Resistant System Logging for Constrained Devices with TEEs

Abstract : Remote mobile and embedded devices are used to deliver increasingly impactful services, such as medical rehabilitation and assistive technologies. Secure system logging is beneficial in these scenarios to aid audit and forensic investigations particularly if devices bring harm to end-users. Logs should be tamper-resistant in storage, during execution, and when retrieved by a trusted remote verifier. In recent years, Trusted Execution Environments (TEEs) have emerged as the go-to root of trust on constrained devices for isolated execution of sensitive applications. Existing TEE-based logging systems, however, focus largely on protecting server-side logs and offer little protection to constrained source devices. In this paper, we introduce EmLog – a tamper-resistant logging system for constrained devices using the GlobalPlatform TEE. EmLog provides protection against complex software adversaries and offers several additional security properties over past schemes. The system is evaluated across three log datasets using an off-the-shelf ARM development board running an open-source, GlobalPlatform-compliant TEE. On average, EmLog runs with low run-time memory overhead (1 MB heap and stack), 430–625 logs/second throughput, and five-times persistent storage overhead versus unprotected logs.
Document type :
Conference papers
Complete list of metadata

Cited literature [33 references]  Display  Hide  Download

https://hal.inria.fr/hal-01875526
Contributor : Hal Ifip <>
Submitted on : Monday, September 17, 2018 - 2:44:47 PM
Last modification on : Monday, September 17, 2018 - 2:47:37 PM
Long-term archiving on: : Tuesday, December 18, 2018 - 2:31:00 PM

File

469589_1_En_5_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Carlton Shepherd, Raja Akram, Konstantinos Markantonakis. EmLog: Tamper-Resistant System Logging for Constrained Devices with TEEs. 11th IFIP International Conference on Information Security Theory and Practice (WISTP), Sep 2017, Heraklion, Greece. pp.75-92, ⟨10.1007/978-3-319-93524-9_5⟩. ⟨hal-01875526⟩

Share

Metrics

Record views

315

Files downloads

7