T-Proxy protects confidential data of apps running in the normal world by storing the plaintext of data in the secure world only. Using reference monitor to check each access to the data to enforce access policies.
Most mobile apps store credentials, like user account and password, on the mobile device to ease the process of login. The passwords stored on the phone can be stolen by an attacker in many ways. For example, an adversary can simply steals passwords from the storage or memory of mobile device with some malicious software. Full-disk encryption does not help since all the passwords still need to be decrypted in memory when being used. Furthermore, a compromised OS will threat all passwords exist in user’s device no matter whether applications encrypt password or force user to input it every time. So, what we need is a method to protect the password from not only the malicious software but also the untrusted operating system. T-proxy comes to the rescue.
Copyright © 2013-2017 TrustKernel Team, Shanghai Pingbo Info Tech Co., Ltd., All Rights Reserved | 沪ICP备16026776号-1