论文标题
信任执行环境的证明机制神秘
Attestation Mechanisms for Trusted Execution Environments Demystified
论文作者
论文摘要
证明是建立对软件系统的信任的基本基础。当与受信任的执行环境结合使用时,它保证了针对强大的攻击者和威胁执行的代码的真实性,为在几个敏感的应用程序域中采用铺平了道路。本文回顾了远程证明原则,并解释了现代和工业良好的可信执行环境如何利用这些机制来利用这些机制。
Attestation is a fundamental building block to establish trust over software systems. When used in conjunction with trusted execution environments, it guarantees the genuineness of the code executed against powerful attackers and threats, paving the way for adoption in several sensitive application domains. This paper reviews remote attestation principles and explains how the modern and industrially well-established trusted execution environments Intel SGX, Arm TrustZone and AMD SEV, as well as emerging RISC-V solutions, leverage these mechanisms.
