 Open-TEE is No Longer Virtual: Towards Software-Only Trusted Execution Environments Using White-Box Cryptography
 Open-TEE is No Longer Virtual: Towards Software-Only Trusted Execution Environments Using White-Box Cryptography
                                                                                                        | Title | Open-TEE is No Longer Virtual: Towards Software-Only Trusted Execution Environments Using White-Box Cryptography | 
| Publication Type | Conference Paper | 
| Year of Publication | 2019 | 
| Authors | Bicakci, Kemal, Ak, Ihsan Kagan, Ozdemir, Betul Askin, Gozutok, Mesut | 
| Conference Name | 2019 First IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications (TPS-ISA) | 
| Date Published | dec | 
| ISBN Number | 978-1-7281-6741-1 | 
| Keywords | composability, compositionality, cryptography, GP TEE specifications, Hardware, Metrics, Mobile handsets, open-source GlobalPlatform-compliant software TEE emulator, Open-TEE, pubcrawl, resilience, Resiliency, Secure storage, security properties hardware TEEs, Software, Software algorithms, SPACE algorithm, TEE-enabled device, telecommunication security, Tools, Trusted Execution Environment, trusted execution environments, White Box Security, white-box cryptography, WhiteBox-TEE | 
| Abstract | Trusted Execution Environments (TEEs) provide hardware support to isolate the execution of sensitive operations on mobile phones for improved security. However, they are not always available to use for application developers. To provide a consistent user experience to those who have and do not have a TEE-enabled device, we could get help from Open-TEE, an open-source GlobalPlatform (GP)-compliant software TEE emulator. However, Open-TEE does not offer any of the security properties hardware TEEs have. In this paper, we propose WhiteBox-TEE which integrates white-box cryptography with Open-TEE to provide better security while still remaining complaint with GP TEE specifications. We discuss the architecture, provisioning mechanism, implementation highlights, security properties and performance issues of WhiteBox-TEE and propose possible revisions to TEE specifications to have better use of white-box cryptography in software-only TEEs. | 
| URL | https://ieeexplore.ieee.org/document/9014373/ | 
| DOI | 10.1109/TPS-ISA48467.2019.00029 | 
| Citation Key | bicakci_open-tee_2019 | 
- Secure storage
- WhiteBox-TEE
- white-box cryptography
- White Box Security
- trusted execution environments
- Trusted Execution Environment
- tools
- telecommunication security
- TEE-enabled device
- SPACE algorithm
- Software algorithms
- Software
- security properties hardware TEEs
- composability
- Resiliency
- resilience
- pubcrawl
- Open-TEE
- open-source GlobalPlatform-compliant software TEE emulator
- Mobile handsets
- Metrics
- Hardware
- GP TEE specifications
- Cryptography
- Compositionality

 
 