Flexible privilege management for microcontroller-class RISC-V cores. (October 2022)
- Record Type:
- Journal Article
- Title:
- Flexible privilege management for microcontroller-class RISC-V cores. (October 2022)
- Main Title:
- Flexible privilege management for microcontroller-class RISC-V cores
- Authors:
- Cilardo, Alessandro
Mercogliano, Stefano - Abstract:
- Abstract: The trustworthiness of microcontroller-class devices is crucial for a growing spectrum of applications involving embedded and industrial systems, ranging from robotics to avionics, from sensor networks to health. In that respect, integrating security-aware processes into design methodologies can lead to products that are more resilient to attacks and provide native protection mechanisms capable of mitigating system vulnerabilities, hence reducing damages and recovery costs. Based on the increasing interest in open-source hardware and relying on the non-proprietary RISC-V specification, in this work we aim to explore architectural extensions serving as a baseline for establishing a Trusted Execution Environment (TEE) in microcontroller-class processor cores targeted at embedded and industrial applications, especially those with some form of latency-sensitive requirements. We point out that supporting a trusted environment in this type of systems is particularly challenging and we identify a minimum set of hardware-level protection mechanisms, with limited assumptions on the available privileged modes and protection support. The reference architecture is demonstrated by extending a lightweight RISC-V core, Ibex. As shown in the last part of our work, the proof-of-concept design achieves flexible support for isolation at a modest overhead in terms of additional hardware resources and delay, thereby fully matching the constraints of latency-sensitive deeply embeddedAbstract: The trustworthiness of microcontroller-class devices is crucial for a growing spectrum of applications involving embedded and industrial systems, ranging from robotics to avionics, from sensor networks to health. In that respect, integrating security-aware processes into design methodologies can lead to products that are more resilient to attacks and provide native protection mechanisms capable of mitigating system vulnerabilities, hence reducing damages and recovery costs. Based on the increasing interest in open-source hardware and relying on the non-proprietary RISC-V specification, in this work we aim to explore architectural extensions serving as a baseline for establishing a Trusted Execution Environment (TEE) in microcontroller-class processor cores targeted at embedded and industrial applications, especially those with some form of latency-sensitive requirements. We point out that supporting a trusted environment in this type of systems is particularly challenging and we identify a minimum set of hardware-level protection mechanisms, with limited assumptions on the available privileged modes and protection support. The reference architecture is demonstrated by extending a lightweight RISC-V core, Ibex. As shown in the last part of our work, the proof-of-concept design achieves flexible support for isolation at a modest overhead in terms of additional hardware resources and delay, thereby fully matching the constraints of latency-sensitive deeply embedded applications. Highlights: Supporting a Trusted Execution Environment is challenging for latency-sensitive IoT We explore extensions enabling a TEE in RISC-V microcontroller cores We identify a minimum set of hardware requirements including limited privileged modes We demonstrate the solution by extending a lightweight RISC-V core, Ibex We achieve flexible TEE support at a modest resource and delay overhead … (more)
- Is Part Of:
- Microelectronics and reliability. Volume 137(2022)
- Journal:
- Microelectronics and reliability
- Issue:
- Volume 137(2022)
- Issue Display:
- Volume 137, Issue 2022 (2022)
- Year:
- 2022
- Volume:
- 137
- Issue:
- 2022
- Issue Sort Value:
- 2022-0137-2022-0000
- Page Start:
- Page End:
- Publication Date:
- 2022-10
- Subjects:
- RISC-V -- Trusted Execution Environments -- Security -- Computer architecture -- Embedded systems
Electronic apparatus and appliances -- Reliability -- Periodicals
Miniature electronic equipment -- Periodicals
Appareils électroniques -- Fiabilité -- Périodiques
Équipement électronique miniaturisé -- Périodiques
Electronic apparatus and appliances -- Reliability
Miniature electronic equipment
Periodicals
621.3815 - Journal URLs:
- http://www.sciencedirect.com/science/journal/00262714 ↗
http://www.elsevier.com/journals ↗
http://www.elsevier.com/homepage/elecserv.htt ↗ - DOI:
- 10.1016/j.microrel.2022.114771 ↗
- Languages:
- English
- ISSNs:
- 0026-2714
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 5758.979000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 23965.xml