Security Market report_TEE by Apple & NXP

1. 0
Presales Report
진행 사업 및 Reference
Apple & NXP - enabling TEE + NXP NFC
M7프로세스는 별도의 Motion co-Processor로 분리되어 있으며 NXP LPC1800(18A1) 시리즈의 Cortx-M3콘트롤러를 기초로 생산됨.
향후 M7 프로세스는 사람의 행동패턴을 분석하고 추적하는 보조프로세스로 많은 사람들이 생활활동 인지(자동차, 운동, 공부…)에 대한 상황인지 서비스와 결합. 또한 모건스탠리의 예상대로 지문인식 + NFC 결합의 금융결제 기능이 추가될 경우 A7 프로세스의 TEE 인증 processing 에 기반한 HCE 로 구현된다면 iCloud 는 향후 B2B, B2C 의 Trust Host 로 진화될 것임.
iPhone 5S M7 motion chip with Maps to improve its Maps experience and even find your parked vehicle. As we know that besides a 64-bit A7 chip, Apple has also included an M7 coprocessor that will measure the motion data from the gyroscope, accelerometer, and compass… &
**** ARMv7개열 ARM12칩으로 나온 것이 Cortex칩. Cortex칩은 크게. A, R, M 3가지 타입으로 구분. A는 Application칩으로써 일종의 범용칩. R은 Realtime으로 Realtime system을 위한 칩, M은 Microcontroller //
NXP is well positioned to participate in Apple’s mobile payments ecosystem,” the analysts conclude. “The company signed a licensing agreement with a customer in Q4 ’13, who we believe is Apple, related to its emerging ID business. A recent patent filing by Apple revealed potential use of NFC and secure element, which we think could be embedded. This patents US patent number 20140019367, and Apple will use an embedded secure element or take a cloud-based host card emulation (HCE) route. & perhaps incorporate a stacked NFC radio and embedded secure element solution such as NXP’s PN65
Morgan Stanley predicts Apple will include NFC in iPhone 6 — and NXP will supply the controller chips
By Sarah Clark • nfcworld.com • Published 21 May 2014, 11:42 • Last updated 21 May 2014, 11:42

2. 1
Presales Report
진행 사업 및 Reference
ARM TEE Architecture debating
It turns out this was the perfect convergence for the synergy needed to allow Apple to move forward with TouchID. Apple has customized a highly optimized version of TrustZone and created what is now known Secure Enclave. Of course Apple will likely never release the details of what they do in the custom hardware for number of reasons. Thus I will speak directly of TrustZone and extrapolate to Secure Enclave
The security of the TrustZone system is achieved by partitioning all of the hardware and software resources so that they exist in one of two worlds - the Secure world for the security subsystem or the Normal world for everything else. The TrustZone-enabled AMBA3 AXI bus fabric ensures that Normal world components do not access Secure world resources, enabling construction of a strong perimeter boundary between the two.
This design places the sensitive resources in the Secure world, and implements robust software running on the secure processor cores, can protect assets against many possible attacks, including those which are normally difficult to secure. By separating security sensitive peripherals through hardware this will limit the number of sub-systems that need to go through security evaluation. The two virtual processors context switch via a processor mode called monitor mode when changing the currently running virtual processor.
애플의 TEE의 보안은 잘 구성되어 있으며 생태계를 구성하고 해당 생태계를 Operating 함으로써 주도권과 영업이익을 가져가는 프레임을 고려하면 최상위 Trust 서버만 구성하고 하위 Trust Brand(업체별 구축)를 가져가는 B2B 형태에서 단말은 암호화된 인증키를 TEE를 통해 Trust 로 연결만 하는 형태로 설계될 것이라는 논의가 있음. ( i-Cloud 에 대한 해킹 이슈가 있는 현재의 상황에서 금융 NFC를 연결하여 오픈 하기는 무리수…일까?)
Published Quora report• Last updated 2014