July 6, 2019
At the Zurich RISC-V Workshop in June, Professor Sandro Pinto and his team at Universidade do Minho, Portugal, presented their work that describes the first fully functional framework for developing secure Internet-of-Things (IoT) systems on RISC-V processors. The proposed horizontal software stack is based exclusively on a number of open-source, commercial-grade technologies readily available today. The bedrock of the system is the Hex-Five Multizone Trusted Execution Environment (TEE), which provides the infrastructure to execute multiple isolated zones, communicating through a secure messaging infrastructure, and other security primitives such as a secure boot.
The remaining components, each encapsulated into a different zone, include:
- A modified, secure implementation of FreeRTOS, with full support for user-mode interrupts
- A TCP/IP stack (picoTCP) complemented by a TLS library (wolfSSL)
- A minimalist root of trust (RoT) implementation for key management
- A command-line interface for overall system management
To learn more, refer to this short paper: