{"id":"https://openalex.org/W4280636196","doi":"https://doi.org/10.1145/3494107.3522774","title":"An REE-independent Approach to Identify Callers of TEEs in TrustZone-enabled Cortex-M Devices","display_name":"An REE-independent Approach to Identify Callers of TEEs in TrustZone-enabled Cortex-M Devices","publication_year":2022,"publication_date":"2022-05-17","ids":{"openalex":"https://openalex.org/W4280636196","doi":"https://doi.org/10.1145/3494107.3522774"},"language":"en","primary_location":{"id":"doi:10.1145/3494107.3522774","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3494107.3522774","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3494107.3522774","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 8th ACM on Cyber-Physical System Security Workshop","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3494107.3522774","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5087767163","display_name":"Antonio Ken Iannillo","orcid":"https://orcid.org/0000-0001-9358-7100"},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":true,"raw_author_name":"Antonio Ken Iannillo","raw_affiliation_strings":["University of Luxembourg, Luxembourg, Luxembourg"],"affiliations":[{"raw_affiliation_string":"University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5079594519","display_name":"Sean Rivera","orcid":"https://orcid.org/0000-0003-4295-8594"},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":false,"raw_author_name":"Sean Rivera","raw_affiliation_strings":["University of Luxembourg, Luxembourg, Luxembourg"],"affiliations":[{"raw_affiliation_string":"University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5044444308","display_name":"Darius Suciu","orcid":null},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Darius Suciu","raw_affiliation_strings":["Stony Brook University, Stony Brook, NY, USA"],"affiliations":[{"raw_affiliation_string":"Stony Brook University, Stony Brook, NY, USA","institution_ids":["https://openalex.org/I59553526"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5032541561","display_name":"Radu Sion","orcid":"https://orcid.org/0000-0002-1237-8276"},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Radu Sion","raw_affiliation_strings":["Stony Brook University, Stony Brook, NY, USA"],"affiliations":[{"raw_affiliation_string":"Stony Brook University, Stony Brook, NY, USA","institution_ids":["https://openalex.org/I59553526"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5069228908","display_name":"Radu State","orcid":"https://orcid.org/0000-0002-4751-9577"},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":false,"raw_author_name":"Radu State","raw_affiliation_strings":["University of Luxembourg, Luxembourg, Luxembourg"],"affiliations":[{"raw_affiliation_string":"University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5087767163"],"corresponding_institution_ids":["https://openalex.org/I186903577"],"apc_list":null,"apc_paid":null,"fwci":0.3979,"has_fulltext":true,"cited_by_count":3,"citation_normalized_percentile":{"value":0.65611526,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"85","last_page":"94"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9962000250816345,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7556070685386658},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6261333227157593},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.5642743706703186},{"id":"https://openalex.org/keywords/byte","display_name":"Byte","score":0.5389180779457092},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.5326366424560547},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.4961312711238861},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.48258793354034424},{"id":"https://openalex.org/keywords/enterprise-information-security-architecture","display_name":"Enterprise information security architecture","score":0.44989413022994995},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.44732850790023804},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4444717466831207},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.4289354681968689},{"id":"https://openalex.org/keywords/arm-architecture","display_name":"ARM architecture","score":0.4108031392097473}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7556070685386658},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6261333227157593},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.5642743706703186},{"id":"https://openalex.org/C43364308","wikidata":"https://www.wikidata.org/wiki/Q8799","display_name":"Byte","level":2,"score":0.5389180779457092},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.5326366424560547},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.4961312711238861},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.48258793354034424},{"id":"https://openalex.org/C31139447","wikidata":"https://www.wikidata.org/wiki/Q5380386","display_name":"Enterprise information security architecture","level":2,"score":0.44989413022994995},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.44732850790023804},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4444717466831207},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.4289354681968689},{"id":"https://openalex.org/C26771161","wikidata":"https://www.wikidata.org/wiki/Q16980","display_name":"ARM architecture","level":2,"score":0.4108031392097473},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3494107.3522774","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3494107.3522774","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3494107.3522774","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 8th ACM on Cyber-Physical System Security Workshop","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3494107.3522774","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3494107.3522774","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3494107.3522774","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 8th ACM on Cyber-Physical System Security Workshop","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320321038","display_name":"Fonds National de la Recherche Luxembourg","ror":"https://ror.org/039z13y21"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4280636196.pdf","grobid_xml":"https://content.openalex.org/works/W4280636196.grobid-xml"},"referenced_works_count":19,"referenced_works":["https://openalex.org/W2056073317","https://openalex.org/W2077171549","https://openalex.org/W2531060444","https://openalex.org/W2541609586","https://openalex.org/W2569698171","https://openalex.org/W2606295484","https://openalex.org/W2725434575","https://openalex.org/W2907095036","https://openalex.org/W2911037351","https://openalex.org/W2941732897","https://openalex.org/W2993659480","https://openalex.org/W3007937051","https://openalex.org/W3103461991","https://openalex.org/W3185109326","https://openalex.org/W3196828088","https://openalex.org/W3213828085","https://openalex.org/W4236360319","https://openalex.org/W4236786653","https://openalex.org/W4289038676"],"related_works":["https://openalex.org/W121858127","https://openalex.org/W2775143306","https://openalex.org/W4289329995","https://openalex.org/W2373574911","https://openalex.org/W2046727832","https://openalex.org/W4247895841","https://openalex.org/W2097742961","https://openalex.org/W4239708624","https://openalex.org/W2165263102","https://openalex.org/W2130675906"],"abstract_inverted_index":{"Internet":[0],"of":[1,33,59,121],"Things":[2],"(IoT)":[3],"devices":[4,23,63],"are":[5,24],"becoming":[6,25],"increasingly":[7,26],"ubiquitous":[8],"in":[9,158],"our":[10,105],"lives,":[11],"from":[12],"personal":[13],"health":[14],"monitoring":[15],"to":[16,41,47,116,163],"house":[17],"and":[18,28,70,150],"factory":[19],"management.":[20],"Further,":[21],"IoT":[22,50,62],"complex,":[27],"ensuring":[29],"their":[30],"security":[31,58],"is":[32],"paramount":[34],"importance.":[35],"As":[36],"a":[37],"result,":[38],"they":[39],"started":[40],"include":[42],"Trusted":[43],"Execution":[44,88],"Environments":[45],"(TEEs)":[46],"protect":[48],"security-critical":[49],"operations.":[51],"This":[52],"paper":[53],"focuses":[54],"on":[55,98,146],"improving":[56],"the":[57,60,81,86,99,118,122,147,159,164],"next-generation":[61],"by":[64],"introducing":[65,93],"Secure":[66,79,128],"Informer,":[67,80],"an":[68,142,152],"identification":[69],"authentication":[71],"mechanism":[72],"for":[73,76,107],"ARM":[74],"TrustZone":[75],"Cortex-M.":[77],"Under":[78],"TEE":[82],"can":[83,130],"directly":[84],"determine":[85],"Rich":[87],"Environment":[89],"(REE)":[90],"context":[91],"without":[92],"additional":[94,153],"communication":[95],"or":[96],"dependency":[97],"REE":[100],"software":[101],"stack.":[102],"We":[103],"implement":[104],"solution":[106],"ARMV8-M":[108],"architecture,":[109],"showing":[110],"its":[111],"efficacy":[112],"with":[113],"no":[114],"need":[115],"change":[117],"source":[119],"code":[120],"REE.":[123],"Empirical":[124],"results":[125],"show":[126],"that":[127],"Informer":[129],"help":[131],"mitigate":[132],"confused":[133],"deputy":[134],"attacks":[135],"targeting":[136],"TEE-running":[137],"services":[138],"while":[139],"only":[140],"incurring":[141],"average":[143],"3.2%":[144],"overhead":[145],"device":[148],"performance":[149],"requiring":[151],"464":[154],"lines":[155],"(52":[156],"bytes":[157],"compiled":[160],"binary":[161],"file)":[162],"TEE.":[165]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}