{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,6]],"date-time":"2025-12-06T04:24:16Z","timestamp":1764995056720,"version":"3.46.0"},"reference-count":42,"publisher":"Institute of Electronics, Information and Communications Engineers (IEICE)","issue":"12","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEICE Trans. Inf. &amp; Syst."],"published-print":{"date-parts":[[2025,12,1]]},"DOI":"10.1587\/transinf.2024icp0004","type":"journal-article","created":{"date-parts":[[2025,6,25]],"date-time":"2025-06-25T18:07:56Z","timestamp":1750874876000},"page":"1484-1495","source":"Crossref","is-referenced-by-count":0,"title":["MicroTEE: Designing and Implementing TEE OS with Rich Trusted Computing Features Based on Microkernel"],"prefix":"10.1587","volume":"E108.D","author":[{"given":"Qianying","family":"ZHANG","sequence":"first","affiliation":[{"name":"College of Information Engineering, Capital Normal University"},{"name":"The State Key Laboratory of Blockchain and Data Security, Zhejiang University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dongxu","family":"JI","sequence":"additional","affiliation":[{"name":"College of Information Engineering, Capital Normal University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shijun","family":"ZHAO","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhiping","family":"SHI","sequence":"additional","affiliation":[{"name":"College of Information Engineering, Capital Normal University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yong","family":"GUAN","sequence":"additional","affiliation":[{"name":"College of Information Engineering, Capital Normal University"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"532","reference":[{"key":"1","doi-asserted-by":"crossref","unstructured":"[1] D. Ji, Q. Zhang, S. Zhao, Z. Shi, and Y. Guan, \u201cMicroTEE: designing TEE OS based on the microkernel architecture,\u201d Proc. 18th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp.26-33, IEEE, 2019. 10.1109\/trustcom\/bigdatase.2019.00014","DOI":"10.1109\/TrustCom\/BigDataSE.2019.00014"},{"key":"2","unstructured":"[2] Arm Ltd., \u201cArm security technology - Building a secure system using TrustZone technology,\u201d Arm Technical White Paper, 2009."},{"key":"3","doi-asserted-by":"crossref","unstructured":"[3] B. Ngabonziza, D. Martin, A. Bailey, H. Cho, and S. Martin, \u201cTrustZone explained: Architectural features and use cases,\u201d Proc. 2nd IEEE International Conference on Collaboration and Internet Computing, pp.445-451, IEEE, 2016. 10.1109\/cic.2016.065","DOI":"10.1109\/CIC.2016.065"},{"key":"4","unstructured":"[4] V. Costan and S. Devadas, \u201cIntel SGX explained,\u201d Cryptology ePrint Archive, Paper 2016\/086, https:\/\/eprint.iacr.org\/2016\/086, 2016."},{"key":"5","doi-asserted-by":"crossref","unstructured":"[5] F. McKeen, I. Alexandrovich, A. Berenzon, C.V. Rozas, H. Shafi, V. Shanbhogue, and U.R. Savagaonkar, \u201cInnovative instructions and software model for isolated execution,\u201d Proc. 2nd International Workshop on Hardware and Architectural Support for Security and Privacy (HASP), pp.10:1-8, ACM, 2013. 10.1145\/2487726.2488368","DOI":"10.1145\/2487726.2488368"},{"key":"6","unstructured":"[6] Intel Corporation, \u201cIntel\u00ae trust domain extensions,\u201d Intel\u00ae TDX White Paper, https:\/\/cdrdv2-public.intel.com\/690419\/TDX-Whitepaper-February2022.pdf, 2022."},{"key":"7","unstructured":"[7] AMD Inc., \u201cAMD SEV-SNP: Strengthening VM isolation with integrity protection and more,\u201d AMD White Paper, 2020."},{"key":"8","unstructured":"[8] R. Bahmani, F. Brasser, G. Dessouky, P. Jauernig, M. Klimmek, A.R. Sadeghi, and E. Stapf, \u201cCURE: A security architecture with CUstomizable and resilient enclaves,\u201d Proc. 30th USENIX Security Symposium (USENIX Security), pp.1073-1090, 2021."},{"key":"9","doi-asserted-by":"crossref","unstructured":"[9] S.D. Yalew, G.Q. Maguire, S. Haridi, and M. Correia, \u201cT2Droid: A TrustZone-based dynamic analyser for Android applications,\u201d Proc. 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp.240-247, IEEE, 2017. 10.1109\/trustcom\/bigdatase\/icess.2017.243","DOI":"10.1109\/Trustcom\/BigDataSE\/ICESS.2017.243"},{"key":"10","doi-asserted-by":"crossref","unstructured":"[10] D. Hein, J. Winter, and A. Fitzek, \u201cSecure block device-secure, flexible, and efficient data storage for ARM TrustZone systems,\u201d Proc. 14th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp.222-229, IEEE, 2015. 10.1109\/trustcom.2015.378","DOI":"10.1109\/Trustcom.2015.378"},{"key":"11","doi-asserted-by":"crossref","unstructured":"[11] Y. Zhang, S. Zhao, Y. Qin, B. Yang, and D. Feng, \u201cTrustTokenF: A generic security framework for mobile two-factor authentication using TrustZone,\u201d Proc. 14th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp.41-48, IEEE, 2015. 10.1109\/trustcom.2015.355","DOI":"10.1109\/Trustcom.2015.355"},{"key":"12","doi-asserted-by":"crossref","unstructured":"[12] R. Liu and M. Srivastava, \u201cPROTC: PROTeCting drone\u2019s peripherals through ARM TrustZone,\u201d Proc. 3rd Workshop on Micro Aerial Vehicle Networks, Systems, and Applications, pp.1-6, ACM, 2017. 10.1145\/3086439.3086443","DOI":"10.1145\/3086439.3086443"},{"key":"13","unstructured":"[13] D. Rosenberg, \u201cQSEE TrustZone kernel integer over flow vulnerability,\u201d Black Hat Conference, 2014."},{"key":"14","unstructured":"[14] Google Project Zero team, \u201cTrust issues: Exploiting TrustZone TEEs,\u201d https:\/\/googleprojectzero.blogspot.com\/2017\/07\/trust-issues-exploiting-trustzone-tees.html, 2017."},{"key":"15","doi-asserted-by":"crossref","unstructured":"[15] W. Li, Y. Xia, L. Lu, H. Chen, and B. Zang, \u201cTEEv: Virtualizing trusted execution environments on mobile platforms,\u201d Proc. 15th ACM SIGPLAN\/SIGOPS International Conference on Virtual Execution Environments (VEE), pp.2-16, ACM, 2019. 10.1145\/3313808.3313810","DOI":"10.1145\/3313808.3313810"},{"key":"16","doi-asserted-by":"crossref","unstructured":"[16] K. Elphinstone and G. Heiser, \u201cFrom L3 to seL4 what have we learnt in 20 years of L4 microkernels?,\u201d Proc. 24th ACM Symposium on Operating Systems Principles (SOSP), pp.133-150, ACM, 2013. 10.1145\/2517349.2522720","DOI":"10.1145\/2517349.2522720"},{"key":"17","unstructured":"[17] seL4 Foundation, \u201cseL4 manual,\u201d https:\/\/sel4.systems\/Info\/Docs\/seL4-manual-latest.pdf, 2024."},{"key":"18","doi-asserted-by":"crossref","unstructured":"[18] U. Steinberg and B. Kauer, \u201cNOVA: a microhypervisor-based secure virtualization architecture,\u201d Proc. 5th European Conference on Computer Systems (EuroSys), pp.209-222, ACM, 2010. 10.1145\/1755913.1755935","DOI":"10.1145\/1755913.1755935"},{"key":"19","unstructured":"[19] Operating Systems Group, TU Dresden, \u201cFiasco microkernel,\u201d https:\/\/os.inf.tu-dresden.de\/fiasco, 2023."},{"key":"20","unstructured":"[20] Redox OS Developers, \u201cRedox OS,\u201d https:\/\/www.redox-os.org, 2023."},{"key":"21","unstructured":"[21] Linaro Ltd., \u201cOP-TEE,\u201d https:\/\/www.op-tee.org, 2025."},{"key":"22","unstructured":"[22] GlobalPlatform, Inc., \u201cTEE internal core API specification,\u201d https:\/\/globalplatform.org\/specs-library\/tee-internal-core-api-specification, 2021."},{"key":"23","doi-asserted-by":"crossref","unstructured":"[23] A. Fitzek, F. Achleitner, J. Winter, and D. Hein, \u201cThe ANDIX research OS \u2014 ARM TrustZone meets industrial control systems security,\u201d Proc. 13th IEEE International Conference on Industrial Informatics, pp.88-93, IEEE, 2015. 10.1109\/indin.2015.7281715","DOI":"10.1109\/INDIN.2015.7281715"},{"key":"24","doi-asserted-by":"crossref","unstructured":"[24] B. McGillion, T. Dettenborn, T. Nyman, and N. Asokan, \u201cOpen-TEE - An open virtual trusted execution environment,\u201d Proc. 14th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp.400-407, IEEE, 2015. 10.1109\/trustcom.2015.400","DOI":"10.1109\/Trustcom.2015.400"},{"key":"25","doi-asserted-by":"crossref","unstructured":"[25] G.E. Suh, D. Clarke, B. Gassend, M. Van Dijk, and S. Devadas, \u201cAEGIS: Architecture for tamper-evident and tamper-resistant processing,\u201d ACM International Conference on Supercomputing 25th Anniversary Volume, pp.357-368, ACM, 2014. 10.1145\/2591635.2667184","DOI":"10.1145\/2591635.2667184"},{"key":"26","doi-asserted-by":"publisher","unstructured":"[26] P. Maene, J. G\u00f6tzfried, R. De Clercq, T. M\u00fcller, F. Freiling, and I. Verbauwhede, \u201cHardware-based trusted computing architectures for isolation and attestation,\u201d IEEE Trans. Comput., vol.67, no.3, pp.361-374, 2017. 10.1109\/tc.2017.2647955","DOI":"10.1109\/TC.2017.2647955"},{"key":"27","unstructured":"[27] Trusted Computing Group, \u201cTPM main specification: Part 1 - design principles,\u201d https:\/\/trustedcomputinggroup.org\/resource\/tpm-main-specification\/, 2011."},{"key":"28","unstructured":"[28] Intel Corporation, \u201cIntel\u00ae trusted execution technology,\u201d Intel White Paper, 2023."},{"key":"29","unstructured":"[29] D. Grawrock, Dynamics of a Trusted Platform: A building block approach, Intel Press, 2009."},{"key":"30","doi-asserted-by":"publisher","unstructured":"[30] J.M. McCune, B.J. Parno, A. Perrig, M.K. Reiter, and H. Isozaki, \u201cFlicker: An execution infrastructure for TCB minimization,\u201d ACM SIGOPS Operating Systems Review, vol.42, no.4, pp.315-328, ACM, 2008. 10.1145\/1357010.1352625","DOI":"10.1145\/1357010.1352625"},{"key":"31","doi-asserted-by":"crossref","unstructured":"[31] J.M. McCune, Y. Li, N. Qu, Z. Zhou, A. Datta, V. Gligor, and A. Perrig, \u201cTrustVisor: Efficient TCB reduction and attestation,\u201d Proc. 31st IEEE Symposium on Security and Privacy (SP), pp.143-158, IEEE, 2010. 10.1109\/sp.2010.17","DOI":"10.1109\/SP.2010.17"},{"key":"32","unstructured":"[32] R. Sailer, X. Zhang, T. Jaeger, and L. Van Doorn, \u201cDesign and implementation of a TCG-based integrity measurement architecture,\u201d Proc. 13th USENIX Security Symposium (USENIX Security), pp.223-238, 2004."},{"key":"33","doi-asserted-by":"crossref","unstructured":"[33] S. Zhao, Q. Zhang, G. Hu, Y. Qin, and D. Feng, \u201cProviding root of trust for ARM TrustZone using on-chip SRAM,\u201d Proc. 4th International Workshop on Trustworthy Embedded Devices (TrustED), pp.25-36, ACM, 2014. 10.1145\/2666141.2666145","DOI":"10.1145\/2666141.2666145"},{"key":"34","doi-asserted-by":"publisher","unstructured":"[34] M. Zhang, Q. Zhang, S. Zhao, Z. Shi, and Y. Guan, \u201cSoftME: A software-based memory protection approach for TEE system to resist physical attacks,\u201d Security and Communication Networks, pp.8690853:1-8690853:12, 2019. 10.1155\/2019\/8690853","DOI":"10.1155\/2019\/8690853"},{"key":"35","doi-asserted-by":"crossref","unstructured":"[35] N. Zhang, K. Sun, W. Lou, and Y.T. Hou, \u201cCaSE: Cache-assisted secure execution on ARM processors,\u201d Proc. 37th IEEE Symposium on Security and Privacy (SP), pp.72-90, IEEE, 2016. 10.1109\/sp.2016.13","DOI":"10.1109\/SP.2016.13"},{"key":"36","doi-asserted-by":"crossref","unstructured":"[36] L. Guan, P. Liu, X. Xing, X. Ge, S. Zhang, M. Yu, and T. Jaeger, \u201cTrustShadow: Secure execution of unmodified applications with ARM TrustZone,\u201d Proc. 15th Annual International Conference on Mobile Systems, Applications, and Services (MobiSys), pp.488-501, ACM, 2017. 10.1145\/3081333.3081349","DOI":"10.1145\/3081333.3081349"},{"key":"37","doi-asserted-by":"crossref","unstructured":"[37] C. Cao, L. Guan, N. Zhang, N. Gao, J. Lin, B. Luo, P. Liu, J. Xiang, and W. Lou, \u201cCryptMe: Data leakage prevention for unmodified programs on ARM devices,\u201d Proc. 21st International Symposium on Research in Attacks, Intrusions, and Defenses (RAID), pp.380-400, Springer, 2018. 10.1007\/978-3-030-00470-5_18","DOI":"10.1007\/978-3-030-00470-5_18"},{"key":"38","doi-asserted-by":"crossref","unstructured":"[38] S. Zhao, Q. Zhang, Y. Qin, W. Feng, and D. Feng, \u201cSecTEE: A software-based approach to secure enclave architecture using TEE,\u201d Proc. 26th ACM Conference on Computer and Communications Security (CCS), pp.1723-1740, 2019. 10.1145\/3319535.3363205","DOI":"10.1145\/3319535.3363205"},{"key":"39","doi-asserted-by":"crossref","unstructured":"[39] G. Klein, K. Elphinstone, G. Heiser, J. Andronick, D. Cock, P. Derrin, D. Elkaduwe, K. Engelhardt, R. Kolanski, M. Norrish, T. Sewell, H. Tuch, and S. Winwood, \u201cseL4: Formal verification of an OS kernel,\u201d Proc. 22nd ACM Symposium on Operating Systems Principles (SOSP), pp.207-220, ACM, 2009. 10.1145\/1629575.1629596","DOI":"10.1145\/1629575.1629596"},{"key":"40","doi-asserted-by":"crossref","unstructured":"[40] B. Blackham, Y. Shi, S. Chattopadhyay, A. Roychoudhury, and G. Heiser, \u201cTiming analysis of a protected operating system kernel,\u201d Proc. 32nd IEEE Real-Time Systems Symposium (RTSS), pp.339-348, IEEE, 2011. 10.1109\/rtss.2011.38","DOI":"10.1109\/RTSS.2011.38"},{"key":"41","unstructured":"[41] Trusted Computing Group, \u201cTrusted computing,\u201dhttps:\/\/trustedcomputinggroup.org, 2023."},{"key":"42","unstructured":"[42] NXP Semiconductors, \u201cAN4686: Secure debug in i.MX 6\/7\/8M family of applications processors,\u201d https:\/\/docs.nxp.com\/bundle\/AN4686\/page\/topics\/secure_jtag.html, 2024."}],"container-title":["IEICE Transactions on Information and Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.jstage.jst.go.jp\/article\/transinf\/E108.D\/12\/E108.D_2024ICP0004\/_pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,6]],"date-time":"2025-12-06T03:27:31Z","timestamp":1764991651000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.jstage.jst.go.jp\/article\/transinf\/E108.D\/12\/E108.D_2024ICP0004\/_article"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,12,1]]},"references-count":42,"journal-issue":{"issue":"12","published-print":{"date-parts":[[2025]]}},"URL":"https:\/\/doi.org\/10.1587\/transinf.2024icp0004","relation":{},"ISSN":["0916-8532","1745-1361"],"issn-type":[{"type":"print","value":"0916-8532"},{"type":"electronic","value":"1745-1361"}],"subject":[],"published":{"date-parts":[[2025,12,1]]},"article-number":"2024ICP0004"}}