• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

Computer Engineering & Science ›› 2020, Vol. 42 ›› Issue (12): 2141-2150.

Previous Articles     Next Articles

Performance optimization of secure application based on TrustZone

YANG Bao-xuan1,DONG Pan1,ZHANG Li-jun2,DING Yan1   

  1. (1.School of Computer,National University of Defense Technology,Changsha 410073;

    (2.24 Branch,32228 Troop,Chinese People’s Liberation Army,Fuzhou 350101,China)

  • Received:2020-06-04 Revised:2020-07-05 Accepted:2020-12-25 Online:2020-12-25 Published:2021-01-04

Abstract: TrustZone technology has been widely used in the security protection of various smart systems, such as data encryption, fingerprint login, DRM protection, electronic payment and so on.  TrustZone technology provides programs with a trusted execution environment (TEE) that is isolated from the host environment to provide the runtime protection for important code and data. Therefore, the calling process of the security application based on TrustZone has changed, then the application adds processes such as data sharing and messaging between the secure and non-secure worlds, which causes additional performance overhead. This paper locates four key elements that affect the performance of the security application: world switch, interrupt, shared memory management, and data copy. On this base, four corresponding performance optimization methods are proposed. Through the AES encryption ser- vice based on TrustZone technology, the proposed performance optimization methods were compared and tested to verify their effectiveness. Experimental results show that: 1. Setting parameters reasonably can improve the performance by 31% at most. 2. Masking external interrupts can improve the perfor- mance by 4.5% at most. 3. Memory reusing can improve the performance by 37% at most. 4. Reducing memory copy can improve the performance by 39% at most.



Key words: TrustZone, trusted execution environment, performance, optimization