Research Project Title:
Trusted Execution Environments in RISC-V
abstract:This project focuses on protecting Virtual Machines (VMs) in the cloud. Deploying your own VMs on a traditional off-site server requires trust that the cloud host would not try to access your VM unauthorized. But this trust can be broken by a rogue administrator or someone malicious getting control over the privileged host kernel using some bugs. Trusted Execution Environments (TEEs) provide sub-OS/hardware level assurances to enclaves or VMs on the Cloud about the confidentiality and integrity of the data, even in the presence of an untrusted cloud host. There have been some existing works about building a process-based TEE using open-sourced RISC-V CPUs. In our project, I plan to design and implement a VM-based TEE in the RISC-V platform with customizable levels of security guarantees.
This SuperUROP gives me exposure to designing an efficient and secure system. I am interested in low-level architecture and I have always been fascinated by how processors are able to perform useful computation. So I am looking forward to pursuing my interests in this project. The class 6.004 gave me experience in RISC-V and how a processor works and 6.858 introduced me to secure system design.