FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W4287884590> ?p ?o ?g. }

• W4287884590 abstract "The Arm TrustZone is the de facto standard for hardware-backed Trusted Execution Environments (TEEs) on mobile devices, providing isolation for secure computations to be shielded from the normal world, and thus from the rest of the system. Most real-world TEEs are proprietary, difficult-to-inspect, and notoriously insecure: In the past years, it has been demonstrated over and over again that TEEs of millions of devices worldwide, and the Trusted Applications (TAs) they harbor, are often vulnerable to attacks such as control flow hijacking. Not only do we have to trust these TEEs to provide a secure environment for TAs such as keystore and Digital Rights Management (DRM), code running in the secure world provided by the Arm TrustZone also has full access to the memory of the regular operating system (OS). Since Thomas Roth first proposed a TrustZone-based rootkit in 2013, progress regarding such rootkits seems to have stalled in the offensive research community. The biggest challenge for TrustZone rootkits is that no interpretation of normal world memory is available in the secure world. Automated reverse engineering of kernel data structures at runtime is one way to implement rootkit functions. We present mechanisms to engineer the interpretation of Linux kernel memory for malicious subversion and the circumvention of basic protection mechanisms from the secure world. We provide a fully working proof-of-concept rootkit located in the Arm TrustZone to demonstrate the proposed mechanisms. We evaluate and show compatibility of the rootkit across different versions of the Linux kernel despite changing data structures. Our results highlight the feasibility of TrustZone rootkits that potentially survive kernel updates and raise awareness about the real danger of having to put trust into unvetted proprietary vendor code, which, as we show, can easily be abused." @default.
• W4287884590 created "2022-07-26" @default.
• W4287884590 creator A5018375019 @default.
• W4287884590 creator A5021851117 @default.
• W4287884590 creator A5031530479 @default.
• W4287884590 creator A5068352067 @default.
• W4287884590 date "2022-05-01" @default.
• W4287884590 modified "2023-09-27" @default.
• W4287884590 title "Abusing Trust: Mobile Kernel Subversion via TrustZone Rootkits" @default.
• W4287884590 cites W1598700299 @default.
• W4287884590 cites W1975582382 @default.
• W4287884590 cites W2079240332 @default.
• W4287884590 cites W2091085572 @default.
• W4287884590 cites W2137725382 @default.
• W4287884590 cites W2168872572 @default.
• W4287884590 cites W2413598406 @default.
• W4287884590 cites W2471431439 @default.
• W4287884590 cites W2491334266 @default.
• W4287884590 cites W2521856610 @default.
• W4287884590 cites W2603720216 @default.
• W4287884590 cites W2606774910 @default.
• W4287884590 cites W2612380866 @default.
• W4287884590 cites W2612397603 @default.
• W4287884590 cites W2755330617 @default.
• W4287884590 cites W2757205367 @default.
• W4287884590 cites W2783940477 @default.
• W4287884590 cites W2793273293 @default.
• W4287884590 cites W2798446790 @default.
• W4287884590 cites W2911594609 @default.
• W4287884590 cites W2913096406 @default.
• W4287884590 cites W2922526186 @default.
• W4287884590 cites W2943860641 @default.
• W4287884590 cites W3002690686 @default.
• W4287884590 cites W3016246341 @default.
• W4287884590 cites W3046286843 @default.
• W4287884590 cites W3212405294 @default.
• W4287884590 cites W4226498484 @default.
• W4287884590 cites W4302771278 @default.
• W4287884590 doi "https://doi.org/10.1109/spw54247.2022.9833891" @default.
• W4287884590 hasPublicationYear "2022" @default.
• W4287884590 type Work @default.
• W4287884590 citedByCount "0" @default.
• W4287884590 crossrefType "proceedings-article" @default.
• W4287884590 hasAuthorship W4287884590A5018375019 @default.
• W4287884590 hasAuthorship W4287884590A5021851117 @default.
• W4287884590 hasAuthorship W4287884590A5031530479 @default.
• W4287884590 hasAuthorship W4287884590A5068352067 @default.
• W4287884590 hasConcept C10144332 @default.
• W4287884590 hasConcept C111919701 @default.
• W4287884590 hasConcept C178489894 @default.
• W4287884590 hasConcept C38652104 @default.
• W4287884590 hasConcept C39217717 @default.
• W4287884590 hasConcept C41008148 @default.
• W4287884590 hasConcept C541664917 @default.
• W4287884590 hasConceptScore W4287884590C10144332 @default.
• W4287884590 hasConceptScore W4287884590C111919701 @default.
• W4287884590 hasConceptScore W4287884590C178489894 @default.
• W4287884590 hasConceptScore W4287884590C38652104 @default.
• W4287884590 hasConceptScore W4287884590C39217717 @default.
• W4287884590 hasConceptScore W4287884590C41008148 @default.
• W4287884590 hasConceptScore W4287884590C541664917 @default.
• W4287884590 hasLocation W42878845901 @default.
• W4287884590 hasOpenAccess W4287884590 @default.
• W4287884590 hasPrimaryLocation W42878845901 @default.
• W4287884590 hasRelatedWork W10035208 @default.
• W4287884590 hasRelatedWork W1094899 @default.
• W4287884590 hasRelatedWork W11598016 @default.
• W4287884590 hasRelatedWork W12025505 @default.
• W4287884590 hasRelatedWork W12673776 @default.
• W4287884590 hasRelatedWork W5790907 @default.
• W4287884590 hasRelatedWork W6736853 @default.
• W4287884590 hasRelatedWork W6983256 @default.
• W4287884590 hasRelatedWork W8098834 @default.
• W4287884590 hasRelatedWork W11649795 @default.
• W4287884590 isParatext "false" @default.
• W4287884590 isRetracted "false" @default.
• W4287884590 workType "article" @default.