TrustKernel security hackers could enforce the security of TEE by static analyse as well as dynamic check at both code-level and data-level. Design to minimize the attack surface with the strongest threat model.

Although TEE runs in secure world with a small interface, it is still possible for a TEE to be compromised due to, e.g., implementation faults. T6 achieves high security by minimize its code base to only 6,000 LOCs. Meanwhile, it adopts many effectively methods including static check and dynamic checks to mitigate potential implementation faults as many as possible. The attack surface has been throughly analyzed and the trusted computing base (TCB) is carefully designed. Other advanced technologies for security enforcement are also applied during implementation time, compiling time, as well as runtime.