基於Trustzone的智慧型設備語音隱私保護系統

以作者查詢圖書館館藏

、以作者查詢臺灣博碩士

、以作者查詢全國書目

、勘誤回報

、線上人數：296

、訪客IP：18.221.176.186

姓名

賴伯誠(Po-Cheng Lai) 查詢紙本館藏

畢業系所

資訊工程學系

論文名稱

基於Trustzone的智慧型設備語音隱私保護系統
(A Trustzone-based Vocal Privacy Protection System for Smart Devices)

相關論文

★ 基於OP-TEE的可信應用程式軟體生態系統	★ SeFence: 基於安全感測的可信任周邊存取控制
★ 高解析度二維地理影像的三維建模：旋轉變換投影與傳統方法的比較研究	★ 在低軌道衛星無線通訊中的CSI預測方法
★ 為多流量低軌道衛星系統提出的動態換手策略	★ 一種減輕LEO衛星網路干擾的方案
★ TruzGPS:基於TrustZone的位置隱私權保護系統	★ 衛星地面整合網路之隨機接入前導訊號設計與偵測
★ SatPolicy: 基於Trustzone的衛星政策執行系統	★ TruzMalloc: 基於TrustZone 的隱私資料保護系統
★ 衛星地面網路中基於物理層安全的CSI保護方法	★ 低軌道衛星地面整合網路之安全非正交多重存取傳輸
★ 低軌道衛星地面網路中的DRX機制設計	★ 衛星地面整合網路之基於集合系統的前導訊號設計
★ 基於省電的低軌衛星網路路由演算法	★ 衛星上可重組化計算之安全FPGA動態部分可重組架構

檔案

[Endnote RIS 格式]

[Bibtex 格式]

[相關文章]

[文章引用]

[完整記錄]

[館藏目錄]

至系統瀏覽論文 ( 永不開放)

摘要(中)

近年來智慧音箱市場快速擴張，在2019年銷量年增70%，創下歷史新高；智慧音箱除了播放音樂，還可藉由網路連線對人們的生活進行各種商品推薦，並能與其他智慧家電串聯，利用語音操控這些家電運作。5G正式上路後帶來更大的頻寬。更多的智慧裝置透過網路與雲端連線，取得服務，同時也將用戶隱私內容曝露於高度風險中。如今，大多數基於ARM晶片的智慧型設備都具有稱為TrustZone的硬體隔離技術。本論文利用開源軟體OP-TEE結合ARM TrustZone實現保護智慧音箱用戶之錄音內容的安全性。

摘要(英)

In recent years, the smart speaker market has expanded rapidly, with sales increasing by 70% annually in 2019, setting a record high. In addition to playing music, smart speakers can also recommend various products to people′s lives through network connections, and can be connected with other smart appliances to use voice to control the operation of these appliances. After 5G is officially launched, it will bring more bandwidth, more smart devices will connect to the cloud through the network to obtain services, and expose user privacy content to a high degree of risk at the same time. Today, most smart devices based on ARM chips have a hardware isolation technology called TrustZone. This paper uses the open source OP-TEE combined with ARM TrustZone to protect the security of the recording content of smart speaker users.

關鍵字(中)

★ 智慧音箱
★ 可信執行環境
★ 隱私保護

關鍵字(英)

★ Smart Devices
★ Trustzone
★ Trusted Execution Environment
★ Privacy Protection

論文目次

中文摘要 v
Abstract vi
致謝 vii
Contents viii
List of Figures x
1 Introduction 1
2 Preliminary 4
2.1 Trusted Execution Environment (TEE) . . . . . . . . . . . . . . . . . . . 4
2.2 ARM Trustzone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
2.3 OPTEE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
3 Related Work 8
3.1 Trusted Execution Environment based privacy protection scheme . . . . 8
3.2 The protection of audio data . . . . . . . . . . . . . . . . . . . . . . . . 9
4 System Model 11
4.1 Attack Model . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
4.2 System Model . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
5 Implementation 15
5.1 System Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
5.2 TVPP in Normal World . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
5.2.1 CA receives the prefix input and invokes TA . . . . . . . . . . . 16
5.3 TVPP in Secure World . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
5.3.1 TA record the user’s voice input . . . . . . . . . . . . . . . . . . 16
5.3.2 TA use the Socket API to send to the receiver . . . . . . . . . . . 17
5.3.3 Storing locally to Secure Storage . . . . . . . . . . . . . . . . . . 20
6 Evaluation 24
6.1 Environment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
6.1.1 QEMU . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
6.1.2 Raspberry Pi 3 Model B+ . . . . . . . . . . . . . . . . . . . . . 25
6.2 Performance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
6.2.1 Audio data transmission time . . . . . . . . . . . . . . . . . . . . 25
6.2.2 Audio data storage time . . . . . . . . . . . . . . . . . . . . . . 29
7 Conclusion 32
Bibliography 33

參考文獻

[1] 戴嘉芬, “台灣市場快速成長中　數十萬戶將升級成智慧家庭,” The CTWANT Company. [Online]. Available: https://www.ctwant.com/article/26641
[2] 羅正漢, “2019 臺灣資安產業與 IoT 發展現況大公開,” iThome. [Online]. Available: https://www.ithome.com.tw/news/130936
[3] “Arm TrustZone in QEMU,” Linaro. [Online]. Available: https://www.linaro.org/blog/armtrustzoneqemu
[4] “IDC (國際數據資訊) 研究顯示: 2018 智慧音箱市場表現亮眼，各家廠商陸續跨足投入，戰情再升溫,” IDC. [Online]. Available: https://www.idc.com/getdoc.jsp?containerId=prAP44819519
[5] “OP-TEE documentation- About OP-TEE,” TrustedFirmware.org. [Online]. Available: https://optee.readthedocs.io/en/latest/general/about.html
[6] “OP-TEE documentation- Raspberry Pi 3,” TrustedFirmware.org. [Online]. Available: https://optee.readthedocs.io/en/latest/building/devices/rpi3.html
[7] “OP-TEE documentation- Secure storage,” TrustedFirmware.org. [Online]. Available: https://optee.readthedocs.io/en/latest/architecture/secure_storage.html
[8] “TEE(Trusted Execution Environment) 簡介,” ITREAD01.COM. [Online]. Available: https://www.itread01.com/p/1352170.html
[9] “一篇瞭解 TrustZone,” ITREAD01.COM. [Online]. Available: https://www.itread01.com/content/1543664342.html
[10] A. Ahlawat and W. Du, “TruzCall: Secure VoIP Calling on Android using ARM TrustZone,” 2019 USENIX Conference on Usenix Annual Technical Conference, Jul. 2019.
[11] H. Cho, P. Zhang, D. Kim, J. Park, C.-H. Lee, Z. Zhao, A. Doupé, and G.-J. Ahn, “Authentication Algorithm and Techniques Under Edge Computing in Smart Grids,” 34th Annual Computer Security Applications Conference(ACSAC), Dec. 2018.
[12] D. Felton, “What is a Trusted Execution Environment (TEE)?” Trustonic. [Online]. Available: https://www.trustonic.com/news/technology/what-is-a-trusted-execution-environment-tee/
[13] L. Guan, P. Liu, X. Xing, X. Ge, S. Zhang, M. Yu, and T. Jaeger, “TrustShadow: Secure Execution of Unmodified Applications with ARM TrustZone,” MobiSys 2017, Apr. 2017.
[14] H. Park, S. Zhai, L. Lu, and F. X. Lin, “Streambox-TZ: secure stream analytics at the edge with trustzone,” 2019 USENIX Conference on Usenix Annual Technical Conference, Jul. 2019.
[15] X. Zhan, H. Guo, X. He, Z. Liu, and H. Chen, “Authentication Algorithm and Techniques Under Edge Computing in Smart Grids,” 2019 IEEE International Conference on Energy Internet (ICEI), May. 2019

指導教授

張貴雲(Guey-Yun Chang)

審核日期

2020-8-20

推文