模糊测试技术在可信执行环境安全评测中的应用
|
摘要
随着移动互联网的迅猛发展,TEE在移动终端上的应用也越发广泛,然而各种关于TEE的漏洞层出不穷,为可信应用的安全性埋下了隐患,因此从模糊测试技术的简要原理出发,介绍模糊测试技术应用在TEE安全测评中的可行性思路与实现。在实际的安全评测中,使用模糊测试技术在TEE安全评测中发现了不少潜在的问题,API模糊测试已成为TEE安全测评过程中必不可少的重要组成部分。
With the rapid development of mobile Internet, the Trusted Execution Environment(TEE) has been widely applied in mobile terminal devices. However, security issues of TEE grow continually resulting in the potential risk to the trusted application. Based on the principle of fuzz test, the feasible idea and implementation of fuzz test technology in the TEE security evaluation were introduced. In the actual security test, the use of fuzz test technology fi nds out some potential problems in the TEE security evaluation. API fuzz test becomes the indispensable component in the process of TEE security evaluation.
With the rapid development of mobile Internet, the Trusted Execution Environment(TEE) has been widely applied in mobile terminal devices. However, security issues of TEE grow continually resulting in the potential risk to the trusted application. Based on the principle of fuzz test, the feasible idea and implementation of fuzz test technology in the TEE security evaluation were introduced. In the actual security test, the use of fuzz test technology fi nds out some potential problems in the TEE security evaluation. API fuzz test becomes the indispensable component in the process of TEE security evaluation.
引文
[1]M Sutton,A Greene,P Amini.Fuzzing:Brute Force Vulnerability Discovery[M].USA:Addison-Wesley Professional,2007.
[2]lake2[TSRC].Fuzz漏洞挖掘漫谈[EB/OL].(2013-11-02)[2017-10-27].https://security.tencent.com/index.php/blog/msg/28.
[3]QQ安全中心.QQ远程协助堆溢出漏洞处理报告(TX07092701)[EB/OL].(2007-09-27)[2017-10-27].http://aq.qq.com/v2/notice/content_2.shtml.
[4]CVE.CVE-2015-6639[EB/OL].(2016-01-01)[2017-10-27].http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6639.
[5]Apple Inc.i OS Security[EB/OL].[2017-10-27].http://images.apple.com/euro/privacy/d/generic/docs/i OS_Security_Guide.pdf.
[6]Laginimaineb.QSEE privilege escalation vulnerability and exploit[EB/OL].[2017-10-27].http://bits-please.blog spot.jp/2016/05/qsee-privilege-escalationvulnerability.html.
[7]Michael Mimoso.Hacker Publishes i OS Secure Enclave Firmware Decryption Key[EB/OL].(2017-08-16)[2017-10-27].https://threatpost.com/hacker-publishes-iossecure-enclave-fi rmware-decryption-key/127524/.
[8]Global Platform Device Technology.TEE Internal APISpecification Version 1.0.Technical Report GPD_SPE_010,globalplatform.org[R].2011.
[9]Global Platform Device Technology.TEE Internal Core API Specifi cation Version 1.1.1 Technical Report GPD_SPE_010,globalplatform.org[R].2016.
[10]国家信息安全漏洞库.Linaro OP-T E E安全漏洞[EB/OL].(2017-02-15)[2017-10-27].http://www.cnnvd.org.cn/web/xxk/ldxq By Id.tag?CNNVD=CNNVD-201702-466.
[11]国炜.移动终端可信环境技术要求第2部分:可信执行环境[Z].2015.
[12]国炜.移动终端可信环境技术要求第4部分:安全操作系统[Z].2015.
[2]lake2[TSRC].Fuzz漏洞挖掘漫谈[EB/OL].(2013-11-02)[2017-10-27].https://security.tencent.com/index.php/blog/msg/28.
[3]QQ安全中心.QQ远程协助堆溢出漏洞处理报告(TX07092701)[EB/OL].(2007-09-27)[2017-10-27].http://aq.qq.com/v2/notice/content_2.shtml.
[4]CVE.CVE-2015-6639[EB/OL].(2016-01-01)[2017-10-27].http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6639.
[5]Apple Inc.i OS Security[EB/OL].[2017-10-27].http://images.apple.com/euro/privacy/d/generic/docs/i OS_Security_Guide.pdf.
[6]Laginimaineb.QSEE privilege escalation vulnerability and exploit[EB/OL].[2017-10-27].http://bits-please.blog spot.jp/2016/05/qsee-privilege-escalationvulnerability.html.
[7]Michael Mimoso.Hacker Publishes i OS Secure Enclave Firmware Decryption Key[EB/OL].(2017-08-16)[2017-10-27].https://threatpost.com/hacker-publishes-iossecure-enclave-fi rmware-decryption-key/127524/.
[8]Global Platform Device Technology.TEE Internal APISpecification Version 1.0.Technical Report GPD_SPE_010,globalplatform.org[R].2011.
[9]Global Platform Device Technology.TEE Internal Core API Specifi cation Version 1.1.1 Technical Report GPD_SPE_010,globalplatform.org[R].2016.
[10]国家信息安全漏洞库.Linaro OP-T E E安全漏洞[EB/OL].(2017-02-15)[2017-10-27].http://www.cnnvd.org.cn/web/xxk/ldxq By Id.tag?CNNVD=CNNVD-201702-466.
[11]国炜.移动终端可信环境技术要求第2部分:可信执行环境[Z].2015.
[12]国炜.移动终端可信环境技术要求第4部分:安全操作系统[Z].2015.