Skip to Main content Skip to Navigation
New interface
Conference papers

KeVlar-Tz: A Secure Cache for Arm TrustZone

Abstract : Edge devices are increasingly in charge of storing privacy-sensitive data, in particular implantables, wearables, and nearables can potentially collect and process high-resolution vital signs 24/7. Storing and performing computations over such data in a privacy-preserving fashion is of paramount importance. We present KeVlar-Tz, an application-level trusted cache designed to leverage Arm TrustZone, a popular trusted execution environment available in consumer-grade devices. To facilitate the integration with existing systems and IoT devices and protocols, KeVlar-Tz exposes a REST-based interface with connection endpoints inside the TrustZone enclave. Furthermore, it exploits the on-device secure persistent storage to guarantee durability of data across reboots. We fully implemented KeVlar-Tz on top of the Op-Tee framework, and experimentally evaluated its performance. Our results showcase performance trade-offs, for instance in terms of throughput and latency, for various workloads, and we believe our results can be useful for practitioners and in general developers of systems for TrustZone. KeVlar-Tz is available as open-source at https://github.com/mqttz/kevlar-tz/ .
Complete list of metadata

https://hal.inria.fr/hal-03384854
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Tuesday, October 19, 2021 - 10:53:20 AM
Last modification on : Tuesday, October 19, 2021 - 11:05:51 AM
Long-term archiving on: : Thursday, January 20, 2022 - 6:37:09 PM

File

 Restricted access
To satisfy the distribution rights of the publisher, the document is embargoed until : 2024-01-01

Please log in to resquest access to the document

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Oscar Benedito, Ricard Delgado-Gonzalo, Valerio Schiavoni. KeVlar-Tz: A Secure Cache for Arm TrustZone. 21th IFIP International Conference on Distributed Applications and Interoperable Systems (DAIS), Jun 2021, Valletta, Malta. pp.109-124, ⟨10.1007/978-3-030-78198-9_8⟩. ⟨hal-03384854⟩

Share

Metrics

Record views

14