| DC 欄位 |
值 |
語言 |
| DC.contributor | 資訊工程學系 | zh_TW |
| DC.creator | 楊承翰 | zh_TW |
| DC.creator | Cheng-Han Yang | en_US |
| dc.date.accessioned | 2021-8-30T07:39:07Z | |
| dc.date.available | 2021-8-30T07:39:07Z | |
| dc.date.issued | 2021 | |
| dc.identifier.uri | http://ir.lib.ncu.edu.tw:444/thesis/view_etd.asp?URN=108522011 | |
| dc.contributor.department | 資訊工程學系 | zh_TW |
| DC.description | 國立中央大學 | zh_TW |
| DC.description | National Central University | en_US |
| dc.description.abstract | 隨著行動裝置的功能越來越強大,越來越多的應用程式會使用用
戶的敏感資料。為了保護這些敏感資料,許多程式開發者會把這些需
要使用敏感資料的應用程式放進可信執行環境執行(Trusted Execution
Environments(TEE))。過去這幾年,許多攻擊都是針對目前市面上正在
商業化使用的可信執行環境。這些不斷的攻擊事件不禁讓我們開始擔
心可信執行環境的安全性。可以造成隱私資料外洩的堆疊溢位攻擊
(Stack buffer overflow attack) 是最常見也是最危險的一種攻擊而且同樣
會對可信執行環境造成傷害。在我們的論文中,我們實作了一塊獨立
於安全世界(Secure World) 以及正常世界(Normal World) 的實體記憶體
體空間來抵抗堆疊溢位攻擊。在可信執行環境中執行的可信執行程式
(Trusted Applications (TAs)) 可以將敏感的資料存進我們的系統中來抵
抗堆疊溢位攻擊造成的敏感資料外洩。我們的系統不會對可信執行環
境造成過多的負擔而且可以有效的保護敏感資料。 | zh_TW |
| dc.description.abstract | As the functions of mobile devices continue to be introduced, more and
more applications in mobile devices access the user's sensitive data. In order
to protect these sensitive data, many developers will put application that need
to access user's sensitive data into Trusted Execution Environments (TEEs)
for execution. In the past few years, many attack aimed at the commercial
TEE currently in use on the market. These endless attacks have made us
worry about whether the security of TEE will be challenged. Stack buffer
overflow attacks which makes sensitive data leakage is the most common and
arguably the most dangerous attack and this attack also caused considerable
damage to TEE. In this paper, we implemented an isolated physical memory
outside Secure World and Normal World to resist stack buffer overflow attack.
Trusted Applications (TAs) in TEE can seal their sensitive data in our system
to prevent Stack buffer overflow attacks which makes sensitive data leakage.
Our system will not cause too much overhead to TEE and can effectively
protect the sensitive data. | en_US |
| DC.subject | 敏感資料 | zh_TW |
| DC.subject | 防止資料外洩 | zh_TW |
| DC.subject | 可信執行環境 | zh_TW |
| DC.subject | ARM Trust- Zone | zh_TW |
| DC.subject | Sensitive Data | en_US |
| DC.subject | Prevent Data Leakage | en_US |
| DC.subject | Trusted Execution Environment | en_US |
| DC.subject | ARM TrustZone | en_US |
| DC.title | TruzMalloc: 基於TrustZone 的隱私資料保 護系統 | zh_TW |
| dc.language.iso | zh-TW | zh-TW |
| DC.title | TruzMalloc: A TrustZone-based Sensitive Data Protection System | en_US |
| DC.type | 博碩士論文 | zh_TW |
| DC.type | thesis | en_US |
| DC.publisher | National Central University | en_US |