FIDES: An advanced chip multiprocessor platform for secure next generation mobile terminals

Hiroaki Inoue, Akihisa Ikeno, Masaki Kondo, Junji Sakai, Masato Edahiro

Research output: Chapter in Book/Report/Conference proceedingConference contribution

9 Citations (Scopus)

Abstract

We propose a secure platform on a chip multiprocessor, known as FIDES, in order to enable next generation mobile terminals to execute downloaded native applications for Linux. Its most important feature is the higher security based on multi-grained separation mechanisms: coarse-grained processor-level separation of the basic-function domain from other domains for such downloaded applications, medium-grained OS-level separation, and fine-grained process-level separation within SELinux. Four new technologies, which include three enhancements to SELinux, support the FIDES platform: 1) bus filter logic for processor-level separation can be implemented as a small logic, 2) XIP kernels for memory-efficient OS-level separation can reduce memory requirements by 182%, 3) policy separation for enhanced process-level separation can apply policies 2.1 times faster at system bootup, and 4) dynamic access control can provide secure Inter-Domain Communications (IDCs) with an overhead of only 4% for IDC system calls. We implemented SELinuxes on an ARM-based multiprocessor. Therefore, the best-suited platform to secure next generation mobile terminals is the FIDES platform, which can provide higher security as well as higher performance and lower power consumption on chip multiprocessors leading the current technology trend of microprocessors.

Original languageEnglish
Title of host publicationCODES+ISSS 2005 - International Conference on Hardware/Software Codesign and Systems Synthesis
Pages178-183
Number of pages6
Publication statusPublished - 2005
Externally publishedYes
Event3rd IEEE/ACM/IFIP International Conference on Hardware/Software Codesign and Systems Synthesis CODES+ISSS 2005 - Jersey City, NJ, United States
Duration: 2005 Sep 182005 Sep 21

Publication series

NameCODES+ISSS 2005 - International Conference on Hardware/Software Codesign and System Synthesis

Conference

Conference3rd IEEE/ACM/IFIP International Conference on Hardware/Software Codesign and Systems Synthesis CODES+ISSS 2005
CountryUnited States
CityJersey City, NJ
Period05/9/1805/9/21

Keywords

  • Chip Multiprocessor
  • Linux
  • Secure Mobile Terminal

ASJC Scopus subject areas

  • Engineering(all)

Fingerprint Dive into the research topics of 'FIDES: An advanced chip multiprocessor platform for secure next generation mobile terminals'. Together they form a unique fingerprint.

  • Cite this

    Inoue, H., Ikeno, A., Kondo, M., Sakai, J., & Edahiro, M. (2005). FIDES: An advanced chip multiprocessor platform for secure next generation mobile terminals. In CODES+ISSS 2005 - International Conference on Hardware/Software Codesign and Systems Synthesis (pp. 178-183). (CODES+ISSS 2005 - International Conference on Hardware/Software Codesign and System Synthesis).