ICORe: Continuous and proactive extrospection on multi-core IoT devices

Penghui Zhang, Haehyun Cho, Ziming Zhao, Adam Doupe, Gail-Joon Ahn

Research output: Contribution to conferencePaper

Abstract

In this paper, we present ICORE, a novel continuous and proactive extrospection system with high visibility on IoT devices deploying multi-core ARM platforms. Dedicated cores named Isolated Cores are configured to stay in the TrustZone secure world upon system boot to perform monitoring functionalities to extrospect static normal world kernel memory area proactively, continuously, and stealthily. Different from the existing TrustZone paradigm, in which secure world serves as the slave of the normal world, ICORE makes the secure world play a master role. Therefore, ICORE remains stealthy and proactive to perform monitoring functionalities. The evaluation results show that ICORE is effective and imposes negligible performance degradation using the SPEC CPU2017 benchmark.

Original languageEnglish (US)
Pages851-860
Number of pages10
DOIs
StatePublished - Jan 1 2019
Event34th Annual ACM Symposium on Applied Computing, SAC 2019 - Limassol, Cyprus
Duration: Apr 8 2019Apr 12 2019

Conference

Conference34th Annual ACM Symposium on Applied Computing, SAC 2019
CountryCyprus
CityLimassol
Period4/8/194/12/19

Keywords

  • ARM TrustZone
  • CPU isolation
  • Extrospection

ASJC Scopus subject areas

  • Software

Fingerprint Dive into the research topics of 'ICORe: Continuous and proactive extrospection on multi-core IoT devices'. Together they form a unique fingerprint.

  • Cite this

    Zhang, P., Cho, H., Zhao, Z., Doupe, A., & Ahn, G-J. (2019). ICORe: Continuous and proactive extrospection on multi-core IoT devices. 851-860. Paper presented at 34th Annual ACM Symposium on Applied Computing, SAC 2019, Limassol, Cyprus. https://doi.org/10.1145/3297280.3297364