rustzone writing trusted applications in rust
play

RustZone: Writing Trusted Applications in Rust Eric Evenchick - PowerPoint PPT Presentation

Oct 18, 2023 •534 likes •847 views

RustZone: Writing Trusted Applications in Rust Eric Evenchick Black Hat Asia 2018 About Me Principal Research Consultant @ Atredis Partners Founder, Developer of Open Source Hardware Things @ Linklayer Labs Outline Trusted

  1. RustZone: Writing Trusted Applications in Rust Eric Evenchick Black Hat Asia 2018

  2. About Me • Principal Research Consultant @ Atredis Partners • Founder, Developer of Open Source Hardware Things @ Linklayer Labs

  3. Outline • Trusted Execution Environments • TrustZone • TEE Problems • Rust • Rust + TrustZone • Demo • Questions

  4. Trusted Execution Environments

  5. What? • An isolated environment within a processor for performing secure operations • Segmentation of code, data, and hardware access • Combination of hardware features and software

  6. Today’s TEEs • Hardware: • AMD: Platform Security Processor • Intel: Trusted Execution Technology, Software Guard Extensions (SGX) • ARM: TrustZone • Software: • Trustonic Kinibi • Qualcomm QSEE • OP-TEE

  7. Use Cases • Authentication • Android GateKeeper • Financial Applications • Secure Boot • DRM • WideVine • An additional layer of protection from the host OS • Protect the system from the user L

  8. TrustZone

  9. The TrustZone TEE • The ARM TEE • Normal and Secure Worlds • Normal World: Rich OS and applications (Linux, Android, QNX, etc…) • Secure World: Limited operating system and Trusted Applications • Processor can switch between two worlds • Configure processor to restrict access to resources

  10. TrustZone in Practice http://genode.org/documentation/articles/trustzone

  11. TEE Problems

  12. TEE OS Protections • ASLR is Rare • No Stack Canaries or Guard Pages • Secure World has fewer protections than Normal World? • No High Level Language Support, we must write C!

  13. Writing (good) C is Hard • Common Memory Problems • Buffer overflows • Use after free • Type Issues • Void means nothing, and everything! • Limited Help from Compiler • Programmers can do Silly Things • memcpy, strcpy, sprintf, etc…

  14. Example: WideVine Trusted Application • DRM Implementation for Android • Undocumented Command with Buffer Overflow • End Result: Arbitrary Code Execution in Secure World • More info: http://bits- please.blogspot.ca/2016/05/qsee- privilege-escalation-vulnerability.html

  15. Example: Samsung OTP Buffer Overflow • Service in Normal World to generate a One-Time Password (OTP) • Any user can access this service! • Trusted Application parses request leading to stack buffer overflow

  16. Rust

  17. What’s Rust? • New systems programming language • In development since 2010, sponsored by Mozilla • Works for embedded: • Works without libc • Compiles to bytecode • No garbage collection or runtime • Raw memory access

  18. Why Rust? • Compile time memory safety checks • Memory ownership and borrow checking • Find bugs at compile time, not runtime • eg, match • Good tools, getting better • Great C Foreign Function Interface!

  19. Rust / C FFI • Call C from Rust and Call Rust from C • Need unsafe blocks for: 1. Dereferencing a raw pointer 2. Calling an unsafe function or method 3. Accessing or modifying a mutable static variable 4. Implementing an unsafe trait • Goal: limit unsafe code

  20. Learning Rust • The Rust Book: https://doc.rust-lang.org/book/ • Paper version soon: https://nostarch.com/Rust • Rust by Example: https://rustbyexample.com/ • Julia Evans’ Blog: https://jvns.ca/categories/rust/

  21. Rust + TrustZone

  22. Step 1: Get an OS • Need an OS to run in the Secure World • OP-TEE • Free and Open Source • Implementations for many platforms, including QEMU • Well Documented • https://www.op-tee.org/

  23. Step 2: Generate Rust Bindings • We need Rust bindings for OP-TEE’s API • bindgen to the rescue! void TEE_MACInit( TEE_OperationHandle operation, const void *IV, uint32_t IVLen); bindgen extern "C" { pub fn TEE_MACInit(operation: TEE_OperationHandle, IV: *const c_types::c_void, IVLen: u32); }

  24. Step 3: Write a Rust Library • Yes, a library . • Need to implement 5 functions: • TA_CreateEntryPoint • TA_DestroyEntryPoint • TA_OpenSessionEntryPoint • TA_CloseSessionEntryPoint • TA_InvokeCommandEntryPoint

  25. Step 3: Write a Rust Library pub fn InvokeCommandEntryPoint(_sessionContext: * mut c_types::c_void, commandID: u32 , _paramTypes: u32 , params: & mut [optee::TEE_Param; 4 ]) -> optee::TEE_Result { ta_print!("Rust TA InvokeCommandEntryPoint"); match commandID { 0 => { unsafe {params[ 0 ].value.as_mut().a += 1 }; ta_print!("Incremented Value"); }, 1 => { unsafe {params[ 0 ].value.as_mut().a -= 1 }; ta_print!("Decremented Value"); }, _ => { return optee::TEE_ERROR_BAD_PARAMETERS; } } return optee::TEE_SUCCESS; }

  26. Step 4: Compile, Link, Sign Compiled Rust Library Compiled TA Linker TA ELF sign.py Header libutee, libmpa, libutil OP-TEE Linker Signed TA Script

  27. Demo

  28. Conclusions

  29. Conclusions • TEEs are useful, but have the usual issues • Rust is an potential replacement for C with some added benefits • Should you write your Trusted Applications in Rust?

  30. Thanks! Questions? eric@evenchick.com @ericevenchick https://github.com/ericevenchick/rustzone

Recommend

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust This talk Why? Why Rust? Binginds Dynamic library Web service example Docker example Compile and distribute

336 views • 14 slides
Idiomatic Rust Writing concise and elegant Rust code Matthias Endler Dsseldorf, Germany

Idiomatic Rust Writing concise and elegant Rust code Matthias Endler Dsseldorf, Germany

Idiomatic Rust Writing concise and elegant Rust code Matthias Endler Dsseldorf, Germany Backend Engineer at Website performance Hot Chocolate matthiasendler mre matthias-endler.de EXPECTATION... REALITY... Python The Zen

1.23k views • 44 slides
Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust

Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust

http://talks.edunham.net/scale15x Rust 101 E. Dunham @qedunham Intro Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust Improve Rust E. Dunham @qedunham March 5, 2017

865 views • 75 slides
The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You

The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You

The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You Thank you to rust-lang.org for providing content and examples! Overview The sales pitch Use cases The Rust language Other Languages

1.18k views • 63 slides
www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29,

www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29,

www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29, 2019 CIS 352 Rust Overview 1 / 1 CIS 352 Rust Overview 2 / 1 References Sample code: Factorial, 1 The Rust Programming Language by S. Klabnik and

589 views • 7 slides
Using Rust on RIOT OS Christian M. Ams uss <ca@etonomy.org> 2019-09-05 RIOT Summit,

Using Rust on RIOT OS Christian M. Ams uss <ca@etonomy.org> 2019-09-05 RIOT Summit,

Using Rust on RIOT OS Christian M. Ams uss <ca@etonomy.org> 2019-09-05 RIOT Summit, Helsinki Outline The Rust language and ecosystem Rust on embedded systems Rust on RIOT Simple things: functions and variables fn

804 views • 24 slides
Embedded Rust, by example of RIOT-OS applications Christian M. Ams uss <ca@etonomy.org>

Embedded Rust, by example of RIOT-OS applications Christian M. Ams uss <ca@etonomy.org>

Embedded Rust, by example of RIOT-OS applications Christian M. Ams uss <ca@etonomy.org> 2018-11-27 Embedded Devices 10kB 1MB ROM 1kB 100kB RAM Typical hardware: ARM Cortex-M3, eg. STM32 Embedded Devices

416 views • 28 slides
Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q.

Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q.

Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q. What is Rust? A. High-level code, low-level performance Q. Why should I care? 3 Decisions GC Control, flexibility

1.15k views • 67 slides
Tips for Writing a Winning Application August 14, 2019 About MEEA The Trusted Source on Energy

Tips for Writing a Winning Application August 14, 2019 About MEEA The Trusted Source on Energy

Inspiring Efficiency Awards Tips for Writing a Winning Application August 14, 2019 About MEEA The Trusted Source on Energy Efficiency We are a nonprofit membership organization with 160+ members, including: Utilities Research

598 views • 24 slides
#02: Mining Before we start Download and install Rust if you want to code along:

#02: Mining Before we start Download and install Rust if you want to code along:

Blockchain In Rust #02: Mining Before we start Download and install Rust if you want to code along: https://www.rust-lang.org/ If youre on Windows, youll also need Microsoft Visual C++ Build Tools 2017:

372 views • 11 slides
Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD

Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD

Practical Applications of Client-Side Trusted Computing David Goltzsche, 2018-04-23 3rd year PhD student at distributed systems group, TU Braunschweig, Germany Research area: trusted execution, distributed systems Advisor: Rdiger Kapitza

939 views • 12 slides
8. WinForms Applications Writing native Windows programs Overview Windows Applications

8. WinForms Applications Writing native Windows programs Overview Windows Applications

8. WinForms Applications Writing native Windows programs Overview Windows Applications Events and event handlers Layered (tiered) model of software Focus Form designer and controls Dialog boxes and forms Delegates

268 views • 22 slides
sled and rio Rust DB + io_uring = @sadisticsystems sled.rs who am I building Rust databases

sled and rio Rust DB + io_uring = @sadisticsystems sled.rs who am I building Rust databases

sled and rio Rust DB + io_uring = @sadisticsystems sled.rs who am I building Rust databases since 2014 previously worked at some social media & infrastructure companies for fun, I build and destroy distributed databases

1.58k views • 52 slides
Finding 1-Day Vulnerabilities in Trusted Applications using Selective Symbolic Execution Marcel

Finding 1-Day Vulnerabilities in Trusted Applications using Selective Symbolic Execution Marcel

Finding 1-Day Vulnerabilities in Trusted Applications using Selective Symbolic Execution Marcel Busch , Kalle Dirsch 2020-02-23 Friedrich-Alexander-University Erlangen-Nrnberg, Germany BAR20 BAR20 Motivation How secure are

352 views • 16 slides
TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware

TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware

TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware Engineer @ Engineers Gate Real-time trading systems Scalable data infrastructure Python/C++/Rust developer MOTIVATION Rust focuses on memory

1.47k views • 100 slides
11-823 Conlanging Writing Writing Systems Different Writing Systems What makes a writing

11-823 Conlanging Writing Writing Systems Different Writing Systems What makes a writing

11-823 Conlanging Writing Writing Systems Different Writing Systems What makes a writing system Standardization vs Historical artifacts Constructed Writing Systems Computing and its influence on writing Types of Writing

528 views • 24 slides
Rust In It for the Long Haul Carol (Nichols || Goulding) @carols10cents is.gd/rustLH Online

Rust In It for the Long Haul Carol (Nichols || Goulding) @carols10cents is.gd/rustLH Online

Rust In It for the Long Haul Carol (Nichols || Goulding) @carols10cents is.gd/rustLH Online Print Manning liveVideo Integer 32 Rust Core Team (yep, Im biased) Plan Railroad industry C Rust What the software

1.66k views • 140 slides
Should you Rust in embedded yet? Who am I? Simonas Kazlauskas; Member of the Rust compiler team;

Should you Rust in embedded yet? Who am I? Simonas Kazlauskas; Member of the Rust compiler team;

Should you Rust in embedded yet? Who am I? Simonas Kazlauskas; Member of the Rust compiler team; Day job: fjrmware for electricity meters; kazlauskas.me; @nagisa on GitHub, @simukis on Twitter. Why does embedded matter? Embedded is virtually

382 views • 16 slides
Corrosion Control at VMT Dr. Rust, Inc. Corrosion Control at VMT R. Heidersbach Dr. Rust, Inc.

Corrosion Control at VMT Dr. Rust, Inc. Corrosion Control at VMT R. Heidersbach Dr. Rust, Inc.

Corrosion Control at VMT Dr. Rust, Inc. Corrosion Control at VMT R. Heidersbach Dr. Rust, Inc. R. Heidersbach K. Prakash R. Guise January 17, 2013 Emphasis of Project Objective not to second guess Objective is an assessment of

470 views • 43 slides
Introduction to rust and its memory safety Lukas Prokop 2020-09-18 for IAIK About me

Introduction to rust and its memory safety Lukas Prokop 2020-09-18 for IAIK About me

Introduction to rust and its memory safety Lukas Prokop 2020-09-18 for IAIK About me Sofuware developer PhD student in post-quantum cryptography at IAIK 1 Speaker at RustGraz (twitter @RustGraz) What is rust? What is rust?

1.47k views • 82 slides
Data Science Until now Abstractions for writing and deploying large-scale web applications

Data Science Until now Abstractions for writing and deploying large-scale web applications

Data Science Until now Abstractions for writing and deploying large-scale web applications Managing infrastructure (PaaS, IaaS, Infrastructure-as- Code, FaaS, etc.) Constructing applications (ML APIs, Backend-as-a- Service) Portland

1.02k views • 58 slides
Rust and its usage as Python extensions PyGamma 2019 Heidelberg Matthieu Baumann 03/19/19

Rust and its usage as Python extensions PyGamma 2019 Heidelberg Matthieu Baumann 03/19/19

Rust and its usage as Python extensions PyGamma 2019 Heidelberg Matthieu Baumann 03/19/19 Summary 1. Rust programming language introduction 2. Use of Rust extension codes into the cdshealpix Python package 3. cdshealpix deployment for Windows,

709 views • 29 slides
#01: Blocks & Hashing Before we start Download and install Rust if you want to code along:

#01: Blocks & Hashing Before we start Download and install Rust if you want to code along:

Blockchain In Rust #01: Blocks & Hashing Before we start Download and install Rust if you want to code along: https://www.rust-lang.org/ Optionally, you may also want to install Git: https://git-scm.com/ Blockchains for Programmers

528 views • 17 slides
Building WebGPU with Rust Fosdem, 2th Feb 2020 Dzmitry Malyshau @kvark (Mozilla / Graphics

Building WebGPU with Rust Fosdem, 2th Feb 2020 Dzmitry Malyshau @kvark (Mozilla / Graphics

Building WebGPU with Rust Fosdem, 2th Feb 2020 Dzmitry Malyshau @kvark (Mozilla / Graphics Engineer) Agenda 1. WebGPU: Why and What? 2. Example in Rust 3. Architecture 4. Rust features used 5. Wrap-up 6. (bonus level) Browsers Can we

1.26k views • 61 slides

More recommend