Arm TechCon 2017 Schedule

View, browse and sort the list of sessions by Pass Type, Track, Day/Time, or by Speaker. Sessions are subject to change. Seating is on a first-come, first-served basis. Please arrive early to ensure you get a seat.

Build your conference agenda today! By signing up for the Scheduler, you can add sessions to your "Favorites" and develop your own personalized schedule. This personalized schedule will be synced with the official Arm TechCon Event App.

Trustworthy Runtime Verification on Resource-constrained Platforms

  • John Clemens (Senior Professional Staff, Johns Hopkins University Applied Physics Lab)
  • Branden Sherrell (Professional Staff, Johns Hopkins University Applied Physics Lab)
  • Rajendranath Pal (Information Assurance Security Researcher, US Government, Dept of Defense)
Location: Ballroom F
Pass Type: All-Access Pass - Get your pass now!
Track: Trust & Security
Format: 50-Minute Technical Session
Audience Level: All
Recording: TBD

Edge devices are critical and ubiquitous components of many cyber-physical systems, yet trustworthy runtime verification of software/firmware on these systems remains a challenge as limited CPU, power, and memory resources requires re-thinking traditional approaches to security and isolation. In this talk we present IoTA, a reference framework for extensible and trustworthy runtime integrity verification to resource constrained platforms. IoTA leverages Arm's Mbedos and uVisor to sandbox applications, keys, and verifiers, using this isolation as a root of trust. We discuss the tradeoffs necessary to implement our system, compare it to similar frameworks targeting more capable systems, and discuss implementation challenges.

Takeaway

Trustworthy runtime verification of software/firmware on microcontrollers remains a challenge due to limited CPU, power, and memory resources. Our prototype, IoTA, provides a reference framework for trustworthy, extensible, and low-overhead runtime verification of firmware and applications. It leverages mBedOS and uVisor's isolation guarantees to extend trust throughout the platform.