T6-m is a security enhancement of TEE and protects TEE from physical attacks. It eliminates the trust of external memory to defend against physical attacks. It enables full-time memory encryption for the entire TEE, including the kernel and user-level applications, without requiring specific hardware.
Physical attack is a big threat to mobile devices. The convenience for carrying also makes mobile devices highly vulnerable to theft and loss. In more sophisticated attacks, attackers issued cold boot attacks on a phone, which had an encrypted disk partition to store user’s data. They retrieved the encryption key stored in memory and successfully decrypted the disk partition. Thus, how to protect confidential record in memory against software or even physical attack, is an important and urgent problem. In T6-m, all the external memory is encrypted, so that no data will be leaked even under physical attack.
Copyright © 2013-2016 TrustKernel Team, Shanghai Pingbo Info Tech Co., Ltd., All Rights Reserved