Automatic Compartmentalization of Rust Programs for Deployment in TEEs
Automatic Compartmentalization of Rust Programs for Deployment in TEEs
| Supervisor(s): | Oliver Braunsdorf |
| Status: | open |
| Topic: | Others |
| Type of Thesis: | Masterthesis |
Thesis topic in co-operation with the Fraunhofer Institute for Applied and Integrated Security AISEC, Garching
|
|
DescriptionChair of IT Security / Prof. Dr. Claudia Eckert Announcement: Master Thesis in Cooperation with Fraunhofer AISEC, Garching Automatic Compartmentalization of Rust Programs for Deployment in TEEs Trusted execution environment (TEE) is a security technology to efficiently perform isolation of software compartments on a single processor or SoC. Automatic Compartmentalization is a technique that can help application developers to easily modify their application, dividing it into sensitive and non-sensitive compartments and isolating the sensitive parts within a TEE while preserving the semantics of the application. This encourages rapid development and adoption of TEE technology. Task Description This thesis aims to build a tool that is able to automatically compartmentalize a Rust program, i.e. based on developer annotations in the program’s source code, split it into a sensitive and a non- sensitive binary. The sensitive part shall be able to run in a isolated trusted runtime. The tool for automatic compartmentalization shall be implemented as a compiler pass for code transformation. Therefore the following tasks might be part of the thesis:
|
|