References:
References: Intro to TrustZone Difference between SGX and TrustZone TrustZone Explained Dan Rosenberg, Reflections on Trusting TrustZone Normal world vs Secure World: Embeded OS vs Secure OS Context Switch normal world use SMC (secure monitor call) instruction to call secure world. ==> exception into the monitor mode (TrustZone kernel) Non-secure bit in Secure Configuration Register; Non-secure bit in the main memory;
References: ARMv8-A Reference Manual A VMSA (in AArch64 state) provides a Memory Management Unit(MMU), that controls address translation, access permissions, and memory attribute determination and checking, for memory accesses made by the PE. More
If you could revise
the fundmental principles of
computer system design
to improve security...
... what would you change?