Prevention Method for Stack Buffer Overflow Attack in TA Command Calls in OP-TEE

TEE systems provide normal world and secure world. It is impossible to gain access to the secure world directly from the normal world. However, vulnerabilities in the secure world can cause attacks to compromise the secure world. In this study, we investigate the security features applied to trusted...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:International Symposium on Computing and Networking Workshops (Online) S. 274 - 278
Hauptverfasser: Shiba, Kaito, Kuzuno, Hiroki, Yamauchi, Toshihiro
Format: Tagungsbericht
Sprache:Englisch
Veröffentlicht: IEEE 27.11.2023
Schlagworte:
Buffer overflows
Conferences
Performance evaluation
Security
Stack overflow prevention method
System security
Threat modeling
Trusted execution environment
ISSN:2832-1324
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:TEE systems provide normal world and secure world. It is impossible to gain access to the secure world directly from the normal world. However, vulnerabilities in the secure world can cause attacks to compromise the secure world. In this study, we investigate the security features applied to trusted applications (TA) in OP-TEE and clarify the lack of protection against stack buffer overflow in TA command calls. We also propose a method for preventing attacks that exploit stack buffer overflows in TA command calls. In addition, the experimental results show that attacks on the vulnerable TAs can be prevented with the proposed method and the overhead can be evaluated.
ISSN:2832-1324
DOI:10.1109/CANDARW60564.2023.00052