Open-TEE is no longer virtual: Towards software-only trusted execution environments using white-box cryptography

Kemal Bicakci, Ihsan Kagan Ak, Betul Askin Ozdemir, Mesut Gozutok

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Trusted Execution Environments (TEEs) provide hardware support to isolate the execution of sensitive operations on mobile phones for improved security. However, they are not always available to use for application developers. To provide a consistent user experience to those who have and do not have a TEE-enabled device, we could get help from Open-TEE, an open-source GlobalPlatform (GP)-compliant software TEE emulator. However, Open-TEE does not offer any of the security properties hardware TEEs have. In this paper, we propose WhiteBox-TEE which integrates white-box cryptography with Open-TEE to provide better security while still remaining complaint with GP TEE specifications. We discuss the architecture, provisioning mechanism, implementation highlights, security properties and performance issues of WhiteBox-TEE and propose possible revisions to TEE specifications to have better use of white-box cryptography in software-only TEEs.

Original languageEnglish
Title of host publicationProceedings - 1st IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2019
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages177-183
Number of pages7
ISBN (Electronic)9781728167411
DOIs
Publication statusPublished - Dec 2019
Externally publishedYes
Event1st IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2019 - Los Angeles, United States
Duration: 12 Dec 201914 Dec 2019

Publication series

NameProceedings - 1st IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2019

Conference

Conference1st IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2019
Country/TerritoryUnited States
CityLos Angeles
Period12/12/1914/12/19

Bibliographical note

Publisher Copyright:
© 2019 IEEE.

Funding

This work is supported by TUBITAK (The Scientific and Technological Research Council of Turkey), Grant no: 5170076.

FundersFunder number
TUBITAK
Türkiye Bilimsel ve Teknolojik Araştirma Kurumu5170076

    Keywords

    • Open-TEE
    • Secure storage
    • SPACE algorithm
    • Trusted execution environment
    • White-box cryptography

    Fingerprint

    Dive into the research topics of 'Open-TEE is no longer virtual: Towards software-only trusted execution environments using white-box cryptography'. Together they form a unique fingerprint.

    Cite this