Prevention Method for Stack Buffer Overflow Attack in TA Command Calls in OP-TEE

TEE systems provide normal world and secure world. It is impossible to gain access to the secure world directly from the normal world. However, vulnerabilities in the secure world can cause attacks to compromise the secure world. In this study, we investigate the security features applied to trusted...

Full description

Saved in:
Bibliographic Details
Published in:International Symposium on Computing and Networking Workshops (Online) pp. 274 - 278
Main Authors: Shiba, Kaito, Kuzuno, Hiroki, Yamauchi, Toshihiro
Format: Conference Proceeding
Language:English
Published: IEEE 27.11.2023
Subjects:
Buffer overflows
Conferences
Performance evaluation
Security
Stack overflow prevention method
System security
Threat modeling
Trusted execution environment
ISSN:2832-1324
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:TEE systems provide normal world and secure world. It is impossible to gain access to the secure world directly from the normal world. However, vulnerabilities in the secure world can cause attacks to compromise the secure world. In this study, we investigate the security features applied to trusted applications (TA) in OP-TEE and clarify the lack of protection against stack buffer overflow in TA command calls. We also propose a method for preventing attacks that exploit stack buffer overflows in TA command calls. In addition, the experimental results show that attacks on the vulnerable TAs can be prevented with the proposed method and the overhead can be evaluated.
ISSN:2832-1324
DOI:10.1109/CANDARW60564.2023.00052