Technology Innovation Institute’s (TII) Secure Systems Research Center (SSRC) has joined the Confidential Computing Consortium (CCC). The CCC aims to accelerate the adoption of confidential computing through hardware-based Trusted Execution Environment (TEE) technologies. SSRC will contribute to standardizing hardware-level security capabilities, particularly for secure RISC-V solutions. Why it matters: This partnership strengthens the UAE's position in cyber-physical systems security by enhancing data protection during processing, an area often overlooked in conventional infrastructure.
Cristofaro Mune and Niek Timmers presented a seminar on bypassing unbreakable crypto using fault injection on Espressif ESP32 chips. The presentation detailed how the hardware-based Encrypted Secure Boot implementation of the ESP32 SoC was bypassed using a single EM glitch, without knowing the decryption key. This attack exploited multiple hardware vulnerabilities, enabling arbitrary code execution and extraction of plain-text data from external flash. Why it matters: The research highlights critical security vulnerabilities in embedded systems and the potential for fault injection attacks to bypass secure boot mechanisms, necessitating stronger hardware-level security measures.
Technology Innovation Institute (TII) in Abu Dhabi has launched the UAE’s first secure cloud technologies programme via its Cryptography Research Center (CRC). The program will focus on advancing Privacy Enhancing Technologies (PETs) like fully homomorphic encryption (FHE) and secure multi-party computation (MPC). TII researchers are also developing hardware accelerators to improve the efficiency of FHE. Why it matters: The initiative addresses growing security and privacy challenges in cloud computing, positioning the UAE as a leader in advanced cryptographic solutions for data protection.
The Secure Systems Research Center (SSRC) has partnered with the University of New South Wales (UNSW Sydney) to research enhancements and scaling of the seL4 microkernel on edge devices. The collaboration aims to extend the seL4 microkernel to support dynamic virtualization, combining minimal trusted computing base with strong isolation. This will address challenges related to heterogeneous hardware, software, and environmental factors in edge computing. Why it matters: This partnership aims to improve the security of edge devices in critical sectors, addressing vulnerabilities in cyber-physical and autonomous systems.
The Secure Systems Research Center (SSRC) has obtained membership in the seL4 Foundation. This membership allows SSRC to participate in and contribute to the open-source development of seL4, a formally verified microkernel OS. SSRC aims to research, contribute to, and advance next-generation high-end edge device environments using seL4's capabilities. Why it matters: This move enhances the UAE's capabilities in developing secure and resilient edge computing solutions, fostering innovation in critical sectors like secure communications and drone technology.
Suresh Sugumar from TII's Secure Systems Research Center (SSRC) has completed a year as Chair of the RISC-V Trusted Computing Group (TCG) Special Interest Group (SIG). The RISC-V TCG SIG is focused on defining trusted computing strategies for RISC-V, including confidential computing and trusted execution environments. SSRC's contribution to the SIG team supports zero-trust security and aims to boost the UAE's economic development. Why it matters: This leadership role for a UAE-based researcher highlights the country's growing influence in shaping open-source hardware security standards and contributing to global technological advancements.
TII's Secure Systems Research Center (SSRC) is partnering with Imperial College London on a three-year research project focused on trustworthy cloud computing with hardware security. The project aims to design a new trustworthy cloud OS stack leveraging hardware mechanisms like ARM TrustZone. It will explore userspace isolation abstraction while maintaining compatibility with POSIX standards using ARM and RISC-V architectures. Why it matters: This collaboration addresses critical cloud security challenges by integrating hardware-based security solutions, potentially unifying cloud and edge security approaches in the region.
TII's Secure Systems Research Center in Abu Dhabi has integrated a secure PX4 stack into a RISC-V based drone, marking a milestone in making RISC-V UAV systems a reality. The center ported DroneCode's PX4 open source software to RISC-V using a commercially available RISC-V development platform. SSRC aims to improve the security and resilience of the PX4 flight control software and NuttX real-time OS, contributing modifications back to the open-source community. Why it matters: This achievement enhances TII's position in drone and autonomous systems research, contributing to safer and more efficient smart city applications in the region.