Loading [MathJax]/extensions/TeX/ietmacros.js
WaTZ: A Trusted WebAssembly Runtime Environment with Remote Attestation for TrustZone | IEEE Conference Publication | IEEE Xplore

WaTZ: A Trusted WebAssembly Runtime Environment with Remote Attestation for TrustZone


Abstract:

WebAssembly (Wasm) is a novel low-level bytecode format that swiftly gained popularity for its efficiency, versatility and security, with near-native performance. Besides...Show More

Abstract:

WebAssembly (Wasm) is a novel low-level bytecode format that swiftly gained popularity for its efficiency, versatility and security, with near-native performance. Besides, trusted execution environments (TEEs) shield critical software assets against compromised infrastructures. However, TEEs do not guarantee the code to be trustworthy or that it was not tampered with. Instead, one relies on remote attestation to assess the code before execution. This paper describes WaTZ, which is (i) an efficient and secure runtime for trusted execution of Wasm code for Arm’s TrustZone TEE, and (ii) a lightweight remote attestation system optimised for Wasm applications running in TrustZone, as it lacks built-in mechanisms for attestation. The remote attestation protocol is formally verified using a state-of-the-art analyser and model checker. Our extensive evaluation of Arm-based hardware uses synthetic and real-world benchmarks, illustrating typical tasks IoT devices achieve. WaTZ’s execution speed is on par with Wasm runtimes in the normal world and reaches roughly half the speed of native execution, which is compensated by the additional security guarantees and the inter-operability offered by Wasm. WaTZ is open-source and available on GitHub along with instructions to reproduce our experiments.
Date of Conference: 10-13 July 2022
Date Added to IEEE Xplore: 13 October 2022
ISBN Information:

ISSN Information:

Conference Location: Bologna, Italy

References

References is not available for this document.