Explore a comprehensive conference talk that delves into the security challenges of Arm Cortex-M Microcontrollers (MCUs) and the TrustZone-M technology. Learn about the limitations of CPU-centric security in TrustZone-M and the potential vulnerabilities in modern MCU-based Trusted Execution Environments (TEEs). Discover how to bypass CPU-level isolation primitives and understand the design of TEE core mechanisms for enhanced protection. Witness a live demonstration of an exploit that breaches TEE isolation boundaries to retrieve cryptographic keys from Secure Partitions and the Trusted kernel. Gain valuable insights into the complexities of implementing system-wide isolation in TrustZone-M systems and the importance of understanding PSA isolation levels for securing IoT devices at scale.
TrustZone-M Security Vulnerabilities in Microcontroller TEEs - Lessons Learned
Overview
Syllabus
What the TrustZone-M Doesn't See, the MCU Does Grieve Over: Lessons Learned
Taught by
Black Hat
Related Courses
-
TrustZone-M - Breaking ARMv8-M's Security
-
May the Trust be with You - Empowering TrustZone-M with Multiple Trusted Environments
-
Zephyr and Trusted Execution Environments for Microcontrollers
-
OP-TEE: Using TrustZone to Protect Our Own Secrets
-
TEEP Implementation on RISC-V Keystone and Arm TrustZone
-
Trusted Execution Environments - A Technical Overview of Intel SGX, Arm TrustZone, and RISC-V PMP
