Developing Secure Services for IoT with OP-TEE: A First Look at Performance and Usability
Christian G\"ottel, Pascal Felber, Valerio Schiavoni

TL;DR
This paper explores using OP-TEE to develop secure IoT services, specifically a key-value store, and evaluates its performance and usability on Raspberry Pi hardware, comparing it with existing secure storage solutions.
Contribution
It demonstrates how to implement a secure key-value store using OP-TEE on Raspberry Pi and provides performance evaluation and usability insights.
Findings
The secure service performs efficiently on Raspberry Pi hardware.
OP-TEE's key-value store shows comparable performance to built-in secure storage.
Usability analysis indicates ease of deployment for IoT applications.
Abstract
The implementation, deployment and testing of secure services for Internet of Things devices is nowadays still at an early stage. Several frameworks have recently emerged to help developers realize such services, abstracting the complexity of the many types of underlying hardware platforms and software libraries. Assessing the performance and usability of a given framework remains challenging, as they are largely influenced by the application and workload considered, as well as the target hardware. Since 15 years, ARM processors are providing support for TrustZone, a set of security instructions that realize a trusted execution environment inside the processor. OP-TEE is a free-software framework to implement trusted applications and services for TrustZone. In this short paper we show how one can leverage OP-TEE for implementing a secure service (i.e., a key-value store). We deploy and…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
