These are public posts tagged with #trustzone. You can interact with them if you have an account anywhere in the fediverse.
At BlackAlps, Marcel Busch and Philip Mao show how forgetting to check input types in the trusted apps of TrustZone leads to memory read/write.
Intro to embedded systems security and TrustZone
https://embeddedsecurity.io
Trusted computing got a new coat of paint. Now it's called "confidential computing", and it's totally not about who controls the machine, not at all.
A talk at #rustlab2023 triggered me, so I had to rant about it on my blog. Sorry.
I was looking at arm microcontrollers for a project at work recently. This is not something I have done in a while. Some of the newer ones have features like page protection and secure enclave support that I've never seen at that level before. Seems like progress. #microcontroller #trustzone #iot
Any embedded cybersecurity nerds present? I try to assess how dangerous this attack to the ARM Cortex-M TrustZone is. I am not an expert on the TrustZone but this attack sounds like it is easy enough to mitigate by using secure or measured boot and not doing retarded stuff in the TrustZone like using key material in the control flow. Any thoughts on this?
https://www.theregister.com/2023/05/15/mcu_side_channel_attack/
#blackhat #trustzone #arm
Spectre-esque exploit figures out when interesting…
www.theregister.com@ellenor I don’t need high performance so I use ~15 y.o. hardware that pre-dates the spy chips. But still my hardware was not targeted by #coreboot / #libreboot, so my firmware is non-free. I also have some newer hardware that I pulled out of dumpsters (thus did not contribute to the intel M.E./ AMD #trustzone spy chip market), which I just use for occasional experiments.
CCA-Funktionen schützen Daten im RAM von Servern, Smartphones…
www.heise.dePrevent spoofing of #IoT Actuation Commands with Arm #TrustZone on #RaspberryPi...
"Protecting Actuators in Safety-Critical IoT Systems from Control Spoofing Attacks"
https://dl.acm.org/doi/pdf/10.1145/3338507.3358615