skee a lightweight secure kernel level execution
play

SKEE: A Lightweight Secure Kernel level Execution Environment for - PowerPoint PPT Presentation

Sep 11, 2022 •279 likes •543 views

SKEE: A Lightweight Secure Kernel level Execution Environment for ARM Ahmed M Azab, Kirk Swidowski, Rohan Bhutkar, Jia Ma, Wenbo Shen, Ruowen Wang, Peng Ning Samsung KNOX R&D, Samsung Research America Motivation Operating system kernels

  1. SKEE: A Lightweight Secure Kernel ‐ level Execution Environment for ARM Ahmed M Azab, Kirk Swidowski, Rohan Bhutkar, Jia Ma, Wenbo Shen, Ruowen Wang, Peng Ning Samsung KNOX R&D, Samsung Research America

  2. Motivation • Operating system kernels still suffer from exploits CVE ‐ 20XX ‐ XXXX - • Security tools Monitor and protect the kernel - May have large code base - May introduce vulnerabilities - Isolation is a key requirement for • hosting security tools 2 2/24/2016

  3. Motivation (cont.) • Previous approaches - Host security tools in hypervisors and hardware security features o Designed with different objectives o Increase TCB size, increase attack surface - Hypervisors and hardware security features may be compromised o Due to the vulnerabilities introduced by security tools o Worse than kernel being compromised o Undermine the overall system security 3 2/24/2016

  4. Secure Kernel ‐ level Execution Environment • Lightweight in ‐ kernel isolation - Run at the same privilege level as kernel - Safe from potential kernel vulnerabilities - No requirement of active involvement from higher privileged layers • Ability to inspect kernel state Full access to entire kernel memory - Event driven monitoring - • Secure context ‐ switching - Entry point exposed to the kernel yet secure from attacks 4 2/24/2016

  5. Scope • Assumptions The system is booted securely - The kernel code is validated and protected - No kernel code injection o Valid assumption using existing techniques (e.g., W^X, DEP, PXN) o • Threat model - All data attacks against the kernel are considered Including code ‐ reuse attacks and non ‐ control data modification o - SKEE guarantees a fully compromised kernel cannot: Revoke the isolation o Compromise the context switching o 5 2/24/2016

  6. SKEE Design • Basic idea - A new self ‐ protected virtual address space • Both address spaces are initialized at boot up time Secure boot is required - • Three basic requirements - Isolation - Secure context switching - Kernel monitoring and protection 6 2/24/2016

  7. Isolation • Create a protected address space - Instrument the kernel translation tables Carve out SKEE’s physical memory range o • Restrict kernel access to the MMU - Revoke write access to kernel translation tables Enforce W^X protection, DEP and PXN of user code o Remove op codes of certain instructions from kernel code - E.g., set TTBR value, disable the MMU o - The kernel is forced to request MMU operations from SKEE Inspected to guarantee the isolation o 7 2/24/2016

  8. Secure Context Switching • Atomic � Execution never returns to kernel while SKEE is accessible Potential attacks - Jump to the middle of the switch gate o Interrupt the switching logic execution o • Deterministic � The switch gate shows same behavior regardless of: Current system state - Input parameters - • Exclusive � The switch gate is the only entry point to SKEE 8 2/24/2016

  9. Secure Switching on 32 ‐ bit ARMv7 Memory management in ARMv7 • - Two translation table base registers: TTBR0 & TTBR1 TTBR holds the page table base, the same with CR3 in x86 o • Challenge - Cannot load values into TTBR0 & TTBR1 in kernel directly Compromise the isolation by loading unverified page tables o • Solution: Use dedicated registers for the kernel and SKEE - Valid technical assumption (Android linux kernel only uses TTBR0) o - Context switching is done by updating TTBCR.N No direct value loading to TTBR o Non ‐ zero value maps SKEE, zero value maps the kernel o 9 2/24/2016

  10. Secure Switching on 32 ‐ bit ARMv7 (Cont.) 10 2/24/2016

  11. ARMv7 Switch Gate • Lines 2 ‐ 5 - Disable interrupts • Lines 7 ‐ 10 Load TTBCR - • Lines 12 and 13 Invalidate the TLB - • Line 15 - Jumps to SKEE • Exit in reverse order 11 2/24/2016

  12. Atomic Switch Gate • Control flow change - Branching - Exceptions - Interrupts • Threat Skip interrupt disable - Use TLB cached code - • Solution Instrument the interrupt - handler Check TTBCR.N o Crash on non ‐ zero (SKEE is o exposed) 12 2/24/2016

  13. Deterministic and Exclusive Switch Gate • Deterministic - No reliance on input • Exclusive No TTBR0, TTBR1 or TTBCR - instructions exist in the kernel code 13 2/24/2016

  14. Secure Switching on 64 ‐ bit ARMv8 • Memory management in 64 ‐ bit ARMv8 Different virtual memory subranges for TTBR0 and TTBR1 - TTBR1: High address range; Typically used by kernel o TTBR0: Low address range; Typically used by user space o • Challenge TTBR0 and TTBR1 map mutually exclusive memory ranges - - Cannot dedicate either registers to SKEE • Solution - SKEE shares TTBR1 with the kernel Entry gate uses a special encoding - the Zero register (XZR) o Guarantee deterministic change of TTBR1 o 14 2/24/2016

  15. Secure Switching on 64 ‐ bit ARMv8 (cont.) • The presence of physical address 0x0 Provided by the hardware as a real physical address - Don’t need hypervisor support o - Provided by the virtualization layer as an intermediate physical address (IPA) Need hypervisor to remap IPA0 x0 to SKEE o Don’t require any “runtime” hypervisor involvements o 15 2/24/2016

  16. ARMv8 Entry Gate • Lines 2 ‐ 4 - Disable interrupts • Lines 6 ‐ 10 Save exiting TTBR1 - Load TTBR1 using XZR - • Lines 12 and 13 Invalidate the TLB - • Lines 15 and 16 - Jump to SKEE 16 2/24/2016

  17. ARMv8 Entry Gate • Atomic - Kernel cannot skip interrupt disable step - Jump to SKEE uses absolute address • Deterministic • Exclusive 17 2/24/2016

  18. ARMv8 Exit Gate • Lines 2 ‐ 5 - Memory padding - Pushing line 11 to the isolated page boundary • Line 7 - Mask interrupts • Lines 9 ‐ 11 - Reload kernel’s TTBR1 Lines 15 ‐ 17 • - Invalidate the TLB Lines 20 ‐ 23 • - Restore interrupts and return to kernel 18 2/24/2016

  19. ARMv8 Exit Gate • Line 11 - Load ttbr1 from stack - Can be exploited by attackers 19 2/24/2016

  20. ARMv8 Exit Gate • Page on top - Only accessible to SKEE • Page on bottom - Accessible to both SKEE and kernel 20 2/24/2016

  21. Fast Secure Switching using ASID Entire TLB invalidation • - Potential performance overhead Using a dedicated ASID for SKEE • - Non ‐ global mapping of SKEE memory - TLB entries will only be associated with a particular ASID - No need to flush the TLB on every context switch Global mapping of the switch gate • Accessible to both the kernel and SKEE - 21 2/24/2016

  22. Kernel Monitoring and Protection Control page table • - Make sure the page table is properly set up, with W^X, DEP and PXN on user Replace the MMU instruction with hooks to SKEE • - The hook will trap to SKEE - SKEE will check each operation • For hosting security tools - Trap critical kernel events - Inspect kernel memory 22 2/24/2016

  23. Performance • Secure context switching No TLB invalidation � ASID is used - 23 2/24/2016

  24. Performance (cont.) • Benchmark performance ARMv7 ARMv8 24 2/24/2016

  25. Thank you 2/24/2016 25

Recommend

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its Verification Mads Dam KTH Royal Institute of Technology BISS spring school, Bertinoro 2018 The Goal Hypervisor Context switch: Fixed round-robin

1.16k views • 67 slides
Safe Loading A Foundation for Secure Execution of Untrusted Programs Mathias Payer, Tobias

Safe Loading A Foundation for Secure Execution of Untrusted Programs Mathias Payer, Tobias

Safe Loading A Foundation for Secure Execution of Untrusted Programs Mathias Payer, Tobias Hartmann, Thomas R. Gross Department of Computer Science ETH Zurich, Switzerland Motivation Application code Kernel 2 Motivation Application code

483 views • 30 slides
Container-based virtualization Process-level Extensively used in Lightweight virtualization

Container-based virtualization Process-level Extensively used in Lightweight virtualization

C NTR Lightweight OS Containers Jrg Thalheim, Pramod Bhatotia Pedro Fonseca Baris Kasikci USENIX ATC 2018 Container-based virtualization Process-level Extensively used in Lightweight virtualization production isolation Namespaces

250 views • 22 slides
Breaking the Lightweight Secure PUF: Understanding the Relation of Input Transformations and

Breaking the Lightweight Secure PUF: Understanding the Relation of Input Transformations and

Breaking the Lightweight Secure PUF: Understanding the Relation of Input Transformations and Machine Learning Resistance 18th Smart Card Research and Advanced Application Conference: CARDIS 2019 Nils Wisiol, Georg T. Becker, Marian Margraf,

952 views • 21 slides
Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M.

Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M.

Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M. Chinni, C.P. Wright, E. Zadok Stony Brook University http://www.fsl.cs.sunysb.edu/ Summary What is the design complexity of system transactions

288 views • 26 slides
Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in the Quantum Era (SPS G5448) February 5th, 2020 Christian Colombo Mark Vella Cryptographic Protocols Design Proofs to validate design against

467 views • 20 slides
Formal verification of low-level execution platforms Apps OS Hardware Host 1 Motivations

Formal verification of low-level execution platforms Apps OS Hardware Host 1 Motivations

Roberto Guanciale Estonian Winter School Day 02 Formal verification of low-level execution platforms Apps OS Hardware Host 1 Motivations Apps Crypto Service OS Hypervisor/ Separation Kernel Hardware Host 1 Motivations Separation

850 views • 63 slides
Outline Side and covert channels Transient execution CSci 5271 Introduction to Computer

Outline Side and covert channels Transient execution CSci 5271 Introduction to Computer

Outline Side and covert channels Transient execution CSci 5271 Introduction to Computer Security Transient execution and kernel isolation: Meltdown Day 11: Side Channels and Transient Execution Stephen McCamant Transient execution and kernel

496 views • 4 slides
Symbolic execution for binary-level security / 50 3 A number of shades of symbolic execution /

Symbolic execution for binary-level security / 50 3 A number of shades of symbolic execution /

Symbolic execution for binary-level security / 50 3 A number of shades of symbolic execution / / Sbastien Bardin & Richard Bonichon 20180409 CEA LIST 1 1,1,L Model Source qb int foo (int t ) { 0,1,L 0,1,L int y = t * t - 4 * t ;

567 views • 34 slides
Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1. About Think Lightweight 2. What are Lightweight Structures? 3. Industry Applications 4. Product Line Review 5. Think Lightweight Component

832 views • 43 slides
Beetle Family of Lightweight and Secure Authenticated Encryption Ciphers Avik Chakraborti 1 ,

Beetle Family of Lightweight and Secure Authenticated Encryption Ciphers Avik Chakraborti 1 ,

Introduction Motivation Specification for Beetle Hardware Implementation Results of Beetle Conclusions Beetle Family of Lightweight and Secure Authenticated Encryption Ciphers Avik Chakraborti 1 , Nilanjan Datta 2 , Mridul Nandi 3 and Kan

614 views • 32 slides
1 CPU Events: Interrupts and Exceptions CPU Events: Interrupts and Exceptions Protecting Entry

1 CPU Events: Interrupts and Exceptions CPU Events: Interrupts and Exceptions Protecting Entry

Processes and the Kernel Processes and the Kernel The kernel sets processes up process in private data data execution Processes, Protection and the Kernel: Processes, Protection and the Kernel: virtual contexts to address

540 views • 9 slides
BPF in-kernel virtual machine 1 BPF is Berkeley Packet Filter low level

BPF in-kernel virtual machine 1 BPF is Berkeley Packet Filter low level

BPF in-kernel virtual machine 1 BPF is Berkeley Packet Filter low level instruction set kernel infrastructure around it interpreter JITs maps helper functions Agenda status and new use cases architecture

680 views • 41 slides
Countering Kernel Rootkits with Lightweight Hook Protection Michal Sekletar College of

Countering Kernel Rootkits with Lightweight Hook Protection Michal Sekletar College of

Countering Kernel Rootkits with Lightweight Hook Protection Michal Sekletar College of Engineering and Computer Science Orlando, FL April 2, 2012 Michal Sekletar (University of Central Florida) April 2, 2012 1 / 14 Acknowledgment

177 views • 14 slides
CUB: A pattern of collective software design, abstraction, and reuse for kernel-level

CUB: A pattern of collective software design, abstraction, and reuse for kernel-level

CUB: A pattern of collective software design, abstraction, and reuse for kernel-level programming DUANE MERRILL, PH.D. NVIDIA RESEARCH What is CUB ? 1. A design model for collective kernel-level primitives How to make reusable software

1.14k views • 72 slides
A Lightweight Secure Cyber Foraging Infrastructure for Resource-Constrained Devices Sachin Goyal

A Lightweight Secure Cyber Foraging Infrastructure for Resource-Constrained Devices Sachin Goyal

A Lightweight Secure Cyber Foraging Infrastructure for Resource-Constrained Devices Sachin Goyal and John Carter School of Computing University of Utah 1 Todays Computing Environments Small, embedded, mobile devices Ubiquitous

245 views • 22 slides
Secure Program Execution via Secure Program Execution via Dynamic Information Flow Dynamic

Secure Program Execution via Secure Program Execution via Dynamic Information Flow Dynamic

Secure Program Execution via Secure Program Execution via Dynamic Information Flow Dynamic Information Flow Tracking Tracking G. Edward Suh Suh, , Jae Jae W. Lee, David W. Lee, David G. Edward Zhang, Srinivas Srinivas Devadas Devadas

547 views • 26 slides
Secure Multi-Execution Dominique Devriese Frank Piessens K.U.Leuven May 14, 2010 Dominique

Secure Multi-Execution Dominique Devriese Frank Piessens K.U.Leuven May 14, 2010 Dominique

Secure Multi-Execution Dominique Devriese Frank Piessens K.U.Leuven May 14, 2010 Dominique Devriese, Frank Piessens (K.U.Leuven) Secure Multi-Execution May 14, 2010 1 / 24 Secure Multi-Execution Outline Secure Multi-Execution

622 views • 29 slides
User-level Management of Kernel Memory Andreas Haeberlen University of Karlsruhe Karlsruhe,

User-level Management of Kernel Memory Andreas Haeberlen University of Karlsruhe Karlsruhe,

User-level Management of Kernel Memory Andreas Haeberlen University of Karlsruhe Karlsruhe, Germany Kevin Elphinstone University of New South Wales Sydney, Australia 1 Motivation: Kernel memory Kernel memory is needed to implement

336 views • 18 slides
Async execution with workqueues Bhaktipriya Shridhar About me $whoami Outreachy Intern at the

Async execution with workqueues Bhaktipriya Shridhar About me $whoami Outreachy Intern at the

Async execution with workqueues Bhaktipriya Shridhar About me $whoami Outreachy Intern at the Linux Kernel with Tejun Heo as my mentor. Working on updating Legacy workqueue interface users in the Linux Kernel . Also, a 3rd year

613 views • 49 slides
Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute

Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute

Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute of Technology Thanks to Roberto Guanciale, Musard Balliu, Christoph Baumann, Hamed Nemati, Oliver Schwarz, Victor Do, Christian Gehrmann, Jonas

1.41k views • 114 slides
Vx32: Lightweight User-Level Sandboxing on the x86 Bryan Ford and Russ Cox MIT CSAIL Presented

Vx32: Lightweight User-Level Sandboxing on the x86 Bryan Ford and Russ Cox MIT CSAIL Presented

Vx32: Lightweight User-Level Sandboxing on the x86 Bryan Ford and Russ Cox MIT CSAIL Presented by: Ashwin Chaugule 26th Sept 2008 Area Systems security: Application Virtualization USENIX 08 - Best Student Paper Source code:

427 views • 28 slides
CSCI 350 Ch. 2 - Kernel and User Mode Mark Redekopp 2 USER VS. KERNEL MODE 3 Exceptions

CSCI 350 Ch. 2 - Kernel and User Mode Mark Redekopp 2 USER VS. KERNEL MODE 3 Exceptions

1 CSCI 350 Ch. 2 - Kernel and User Mode Mark Redekopp 2 USER VS. KERNEL MODE 3 Exceptions Any event that causes a break in normal execution Error Conditions Invalid address, Arithmetic/FP overflow/error Hardware Interrupts /

440 views • 20 slides
Skee-Bounce The Tennessee Kids Ahmad Marion, Kiernan Tonnies, Boone Jinks, Robert Garibay

Skee-Bounce The Tennessee Kids Ahmad Marion, Kiernan Tonnies, Boone Jinks, Robert Garibay

Skee-Bounce The Tennessee Kids Ahmad Marion, Kiernan Tonnies, Boone Jinks, Robert Garibay B216-6 EF 152 Spring, 2017 11/3/2017 Customer Product Selection Requirements Our target customers are As a group we thought this

346 views • 9 slides

More recommend