product iamge

Integration Guide

This document was uploaded by one of our users. The uploader already confirmed that they had the permission to publish it. If you are author/publisher or own the copyright of this documents, please report to us by using this DMCA report form.

Download
Search on Amazon

Simply click on the Download Book button.

Yes, Book downloads on Ebookily are 100% Free.

Sometimes the book is free on Amazon As well, so go ahead and hit "Search on Amazon"

Author(s): Trustonic
Edition: 2.0
Publisher: LAPSUS
Year: 2014

Language: English
Pages: 57
Tags: trustonic,t-base,integration,guide

1 Introduction
2 2.1 Building Normal World Components
2.1.1 2.1.2 2.2 Integration in Android (32 and 64 bit)
2.2.1 Integration in Device File System
2.2.1.1 32 bit Android OS file system:
2.2.1.1 64 bit Android OS file system:
2.2.1 Permissions and Access Rights
2.2.2 Directories Requirements
2.2.2.1 mcRegistry directory
2.2.2.2 Persistent Trustlets and Secure Drivers
2.2.3 Starting up 3 3.1 3.2 Trusted Applications and Secure Drivers Overview
3.3 Config and Signing of t-base Components
3.3.1 Keys in 3.3.2 Configuring 3.3.2.1 Configuring 3.3.2.2 Signing the System Trusted Applications and Drivers
3.3.2.3 Signing 3.3.3 Configuring Content Management Trusted Application
3.3.3.1 Configure Content Management Trusted Application
3.3.3.2 Signing Content Management Trusted Application
3.3.4 Signing the Secure Storage Driver
3.3.5 Signing the Trusted User Interface Driver
3.3.6 Signing the DRM Driver
3.3.1 Signing the TEE Keymaster Trusted Application
3.4 3.5 3.6 Fastcalls Hook Mechanism
3.6.1 Handling FastCalls
3.6.2 Additional Secure Driver APIs
3.6.2.1 Types
3.6.2.1.1 FastCall Registers
3.6.2.1.2 FastCall Context
3.6.2.2 Specific FastCall Entry Points
3.6.2.2.1 FastCall Handler Initialization
3.6.2.2.2 FastCall Handler
3.6.2.3 Specific Firmware Driver APIs
3.6.2.3.1 drApiInstallFc
3.6.3 Firmware Driver Structure
3.6.3.1 FastCall Hook Initialization
3.6.3.2 Assembly Glue for FastCall Handler
3.6.3.3 FastCall Handler Example
3.6.4 u-boot Integration Sample
3.6.4.1 Entry Point in u-boot
3.6.4.2 3.6.4.3 Firmware Driver Loading
3.6.4.4 Data Deallocation
4 TEE Keymaster
4.1 Normal World Connector and Integration
4.2 Secure World Component
5 DRM Integration
5.1 High Level Flow
5.2 T-Play Assumptions
5.3 Drivers Overview
5.3.1 Framework Support
5.3.2 TLC and TA Driver Access
5.3.3 Driver-Client Access Control
5.3.4 Threads
5.3.4.1 Exception Handler Thread
5.3.4.2 IPC Handler Thread
5.3.4.3 DCI Handler Thread
5.3.5 Protected Buffers
5.4 DRM Driver Protocol
5.4.1.1 FID_DR_OPEN_SESSION
5.4.1.2 FID_DR_CLOSE_SESSION
5.4.1.3 FID_DR_PROCESS_DRM_CONTENT
5.4.1.4 FID_DR_CHECK_LINK
5.5 Security and Evaluation Considerations
5.5.1 Video Buffer Protection
5.5.2 Checking of Pointers
5.5.3 Input to Crypto Hardware
5.5.4 Integrity of System Components
5.5.5 Trusted Application Isolation
5.5.6 Debug Attack
5.5.7 Reset Buffers
6 Trusted User Interface Integration
6.1 Security considerations
6.1.1 Framebuffer
6.1.2 Input devices
6.2 TUI Secure Driver
6.2.1 Memory requirement
6.2.2 Secure display
6.2.3 Secure input
6.2.4 Building the TUI secure driver
6.2.5 Integrating the TUI secure driver
6.3 TUI Kernel components
6.3.1 TUI module
6.3.2 Patching Linux drivers
6.3.3 Building the kernel
6.3.4 Integrating the TUI module
6.4 TUI Android components
6.4.1 Customizing the TUI Service
6.4.2 Integrating the TUI service
7 Running Tests