Enforcing Hardware-Assisted Integrity for Secure Transactions from Commodity Operating Systems.

摘要

In this project, we tried to solve the isolation problem from a different perspective. We still set up two OSes for the user. One is the trusted OS for secure transactions; the other is the untrusted OS for normal transactions. To overcome the drawbacks of the VMMs, we provide a firmware-assisted system, referred to as secure switching system, which allows users to switch between a trusted operating system and an untrusted operating system on the same machine with a short switching time. In our solution, we put a small number of relatively trusted applications in the trusted OS, and a large number of untrusted applications in another untrusted OS. Even if the untrusted OS has been compromised, it cannot affect the applications in the trusted OS. Our solution reduces the attack surface for secure transactions by establishing a tailored trustworthy space and enables secure transactions with very low switching time on commodity hardware platforms.