Secure Storage

Having a storage for data that is secure but does not require the use of dedicated hardware (Secure Elements, etc.) and that can be implemented using the widely available ARM TrustZone extension.

Input(s):

• Any data that requires to be stored safely (immune to device interception)

Main feature(s):

• Secure storage enables devices running on top of an ARM architecture implementing ARM TrustZone to store critical data of limited size (e.g., encryption keys) in a secure manner that can’t easily be accessed even if the device is physically compromised. The TrustZone enables a safe execution environment with separate CPU and RAM.

Output(s):

• Any secure data previously stored in the Secure Storage

• The implementation is very dependent on the details of the Use Case
• No SCRATCh general implementation is provided, only a proof-of-concept

Any application that requires data to be stored securely even if a malicious user logs into the device.

Since there is no general implementation, there is no general reuse case or conditions. Contact HIB for consultancy on the topic.