论文标题
可信赖执行环境的证明机制的探索性研究
An Exploratory Study of Attestation Mechanisms for Trusted Execution Environments
论文作者
论文摘要
证明是建立对软件系统的信任的基本基础。当与受信任的执行环境结合使用时,它可以保证即使面对强大的攻击者,也可以执行真正的代码,从而为在几个敏感的应用程序域中采用铺平了道路。本文审查了现有的远程证明原则,并将当前受信任的执行环境的功能与Intel SGX,ARM Trustzone和AMD SEV以及新兴的RISC-V解决方案进行了比较。
Attestation is a fundamental building block to establish trust over software systems. When used in conjunction with trusted execution environments, it guarantees that genuine code is executed even when facing strong attackers, paving the way for adoption in several sensitive application domains. This paper reviews existing remote attestation principles and compares the functionalities of current trusted execution environments as Intel SGX, Arm TrustZone and AMD SEV, as well as emerging RISC-V solutions.
