手机短信已成为手机应用中双因子验证的常用方法,广泛用于网站登录、移动支付、银行转账等关键应用中。许多恶意软件利用手机系统漏洞来窃听短信和截取用户的验证码,从而对用户的财产安全造成了巨大的威胁。为防御这类恶意软件,许多基于对称密钥、公私钥体制等加密算法的手机短信加密软件已经被开始使用,给用户带来了较大便利。然而此类解决方案并不能保证在智能手机操作系统被攻破时短信明文数据与密钥数据的安全性。本文提出的TrustSMS系统通过利用ARM TrustZone技术,可以同时保证短信数据在传输过程中与在智能手机操作系统内的安全性。本文在三星Exynos 4412开发板上实现了TrustSMS的原型系统,实验数据表明TrustSMS系统对智能手机操作系统产生的影响极小,性能开销则低于1%。%SMS has become a common used method in two-factor authentication,which is widely used for website login, mobile payment, bank transfer and other critical applications .However,many malicious applications take use of mobile operating system vulnerabilities to eavesdrop and intercept SMS for users’ authentication code,which brings a great threat on the security of the us -er’s property.To defend such malicious applications, many SMS encryption applications based on symmetric key encryption algo -rithm or publicp/rivate key system have been started using ,which bring great convenience to the users .However, such solutions cannot guarantee the confidentiality of the SMS plaintext or even the seeds when the mobile OS is compromised .This paper pres-ents TrustSMS(Trusted Short Message Service), a secure SMS encryption scheme by using ARM TrustZone technology .TrustSMS can not only protect the confidentiality of the SMS against a malicious mobile OS, but also guarantee reliable end-to-end SMS transmission.A prototype of TrustSMS is developed on Samsung Exynos 4412.The experimental results show that TrustSMS has small impacts on the mobile OS and its performance overhead is less than 1%.
展开▼
