Key-hiding on the ARM platform

Alexander Nilsson; Marcus Andersson; Stefan Axelsson

doi:10.1016/j.diin.2014.03.008

Key-hiding on the ARM platform

Alexander Nilsson, Marcus Andersson, Stefan Axelsson

Blekinge Institute of Technology

Research output: Contribution to journal › Article › peer-review

Abstract

To combat the problem of encryption key recovery from main memory using cold boot-attacks, various solutions has been suggested, but most of these have been implemented on the x86 architecture, which is not prevalent in the smartphone market, where instead ARM dominates. One existing solution does exist for the ARM architecture but it is limited to key sizes of 128 bits due to not being able to utilise the full width of the CPU registers used for key storage. We developed a test-implementation of CPU-bound key storage with 256-bit capacity, without using more hardware resources than the previous solution. We also show that access to the key can be restricted for programs executing outside the kernel space.

Original language	English
Journal	Digital Investigation
Volume	11
Issue number	SUPPL. 1
DOIs	https://doi.org/10.1016/j.diin.2014.03.008
Publication status	Published - 2014 Jan 1
Externally published	Yes

Subject classification (UKÄ)

Computer Systems

Free keywords

ARM
Cold-boot
Computer architecture
Cryptography

Access to Document

10.1016/j.diin.2014.03.008Licence: CC BY-NC-ND

Cite this

@article{7385f42771784e2caf2107c37a7ff720,

title = "Key-hiding on the ARM platform",

abstract = "To combat the problem of encryption key recovery from main memory using cold boot-attacks, various solutions has been suggested, but most of these have been implemented on the x86 architecture, which is not prevalent in the smartphone market, where instead ARM dominates. One existing solution does exist for the ARM architecture but it is limited to key sizes of 128 bits due to not being able to utilise the full width of the CPU registers used for key storage. We developed a test-implementation of CPU-bound key storage with 256-bit capacity, without using more hardware resources than the previous solution. We also show that access to the key can be restricted for programs executing outside the kernel space.",

keywords = "ARM, Cold-boot, Computer architecture, Cryptography",

author = "Alexander Nilsson and Marcus Andersson and Stefan Axelsson",

year = "2014",

month = jan,

day = "1",

doi = "10.1016/j.diin.2014.03.008",

language = "English",

volume = "11",

journal = "Digital Investigation",

issn = "1742-2876",

publisher = "Elsevier",

number = "SUPPL. 1",

}

TY - JOUR

T1 - Key-hiding on the ARM platform

AU - Nilsson, Alexander

AU - Andersson, Marcus

AU - Axelsson, Stefan

PY - 2014/1/1

Y1 - 2014/1/1

N2 - To combat the problem of encryption key recovery from main memory using cold boot-attacks, various solutions has been suggested, but most of these have been implemented on the x86 architecture, which is not prevalent in the smartphone market, where instead ARM dominates. One existing solution does exist for the ARM architecture but it is limited to key sizes of 128 bits due to not being able to utilise the full width of the CPU registers used for key storage. We developed a test-implementation of CPU-bound key storage with 256-bit capacity, without using more hardware resources than the previous solution. We also show that access to the key can be restricted for programs executing outside the kernel space.

AB - To combat the problem of encryption key recovery from main memory using cold boot-attacks, various solutions has been suggested, but most of these have been implemented on the x86 architecture, which is not prevalent in the smartphone market, where instead ARM dominates. One existing solution does exist for the ARM architecture but it is limited to key sizes of 128 bits due to not being able to utilise the full width of the CPU registers used for key storage. We developed a test-implementation of CPU-bound key storage with 256-bit capacity, without using more hardware resources than the previous solution. We also show that access to the key can be restricted for programs executing outside the kernel space.

KW - ARM

KW - Cold-boot

KW - Computer architecture

KW - Cryptography

U2 - 10.1016/j.diin.2014.03.008

DO - 10.1016/j.diin.2014.03.008

M3 - Article

AN - SCOPUS:84899624630

SN - 1742-2876

VL - 11

JO - Digital Investigation

JF - Digital Investigation

IS - SUPPL. 1

ER -

Key-hiding on the ARM platform

Abstract

Subject classification (UKÄ)

Free keywords

Access to Document

Fingerprint

Cite this