Hora: High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones

Dylan Zueck; Nathaniel Atallah; Ian Do; Zhihao Yao; Ardalan Amiri Sani

doi:10.1145/3678015.3680486

Hora: High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones

Dylan Zueck, Nathaniel Atallah, Ian Do, Zhihao Yao, Ardalan Amiri Sani

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Scopus citations

Abstract

Body-worn medical devices benefit from having a companion mobile application to monitor them and even program them. For example, the companion application for an insulin pump can be used to automatically monitor blood sugar level throughout the day and administer insulin without user input [1]. Unfortunately, the operating systems of modern smartphones cannot provide adequate security guarantees for these applications. Existing Trusted Execution Environment (TEE) solutions aim to alleviate these problems by removing the system software (and even most of the hardware [19]) from the TCB. However, no existing TEE solution provides a critical guarantee needed for these applications: periodic availability. This is needed to ensure that the application is executed according to a requested schedule, e.g., multiple times a day to read the patient's blood sugar and administer insulin. We present our ongoing work on Hora1, a high assurance TEE solution for smartphones that guarantees periodic availability of CPU and I/O with a minimal and formally-verified scheduler. We present the design of Hora as well as its scheduler, which is implemented fully in Rust (in 1583 lines of code) and (partially) formally verified using the Kani model checker [7].

Original language	English (US)
Title of host publication	APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems
Publisher	Association for Computing Machinery, Inc
Pages	115-121
Number of pages	7
ISBN (Electronic)	9798400711053
DOIs	https://doi.org/10.1145/3678015.3680486
State	Published - Sep 4 2024
Event	15th ACM SIGOPS Asia-Pacific Workshop on Systems, APSys 2024 - Kyoto, Japan Duration: Sep 4 2024 → Sep 5 2024

Publication series

Name	APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems

Conference

Conference	15th ACM SIGOPS Asia-Pacific Workshop on Systems, APSys 2024
Country/Territory	Japan
City	Kyoto
Period	9/4/24 → 9/5/24

All Science Journal Classification (ASJC) codes

Computer Networks and Communications
Hardware and Architecture

Keywords

Availability
Mobile computing
TEE
Verification

Access to Document

10.1145/3678015.3680486

Cite this

Zueck, D., Atallah, N., Do, I., Yao, Z., & Sani, A. A. (2024). Hora: High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones. In APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems (pp. 115-121). (APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems). Association for Computing Machinery, Inc. https://doi.org/10.1145/3678015.3680486

Zueck, Dylan ; Atallah, Nathaniel ; Do, Ian et al. / Hora : High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones. APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems. Association for Computing Machinery, Inc, 2024. pp. 115-121 (APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems).

@inproceedings{58808c9e2e42418a9bafdd40246e1f90,

title = "Hora: High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones",

abstract = "Body-worn medical devices benefit from having a companion mobile application to monitor them and even program them. For example, the companion application for an insulin pump can be used to automatically monitor blood sugar level throughout the day and administer insulin without user input [1]. Unfortunately, the operating systems of modern smartphones cannot provide adequate security guarantees for these applications. Existing Trusted Execution Environment (TEE) solutions aim to alleviate these problems by removing the system software (and even most of the hardware [19]) from the TCB. However, no existing TEE solution provides a critical guarantee needed for these applications: periodic availability. This is needed to ensure that the application is executed according to a requested schedule, e.g., multiple times a day to read the patient's blood sugar and administer insulin. We present our ongoing work on Hora1, a high assurance TEE solution for smartphones that guarantees periodic availability of CPU and I/O with a minimal and formally-verified scheduler. We present the design of Hora as well as its scheduler, which is implemented fully in Rust (in 1583 lines of code) and (partially) formally verified using the Kani model checker [7].",

keywords = "Availability, Mobile computing, TEE, Verification",

author = "Dylan Zueck and Nathaniel Atallah and Ian Do and Zhihao Yao and Sani, {Ardalan Amiri}",

note = "Publisher Copyright: {\textcopyright} 2024 Owner/Author.; 15th ACM SIGOPS Asia-Pacific Workshop on Systems, APSys 2024 ; Conference date: 04-09-2024 Through 05-09-2024",

year = "2024",

month = sep,

day = "4",

doi = "10.1145/3678015.3680486",

language = "English (US)",

series = "APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems",

publisher = "Association for Computing Machinery, Inc",

pages = "115--121",

booktitle = "APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems",

}

Zueck, D, Atallah, N, Do, I, Yao, Z & Sani, AA 2024, Hora: High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones. in APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems. APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems, Association for Computing Machinery, Inc, pp. 115-121, 15th ACM SIGOPS Asia-Pacific Workshop on Systems, APSys 2024, Kyoto, Japan, 9/4/24. https://doi.org/10.1145/3678015.3680486

Hora: High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones. / Zueck, Dylan; Atallah, Nathaniel; Do, Ian et al.
APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems. Association for Computing Machinery, Inc, 2024. p. 115-121 (APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Hora

T2 - 15th ACM SIGOPS Asia-Pacific Workshop on Systems, APSys 2024

AU - Zueck, Dylan

AU - Atallah, Nathaniel

AU - Do, Ian

AU - Yao, Zhihao

AU - Sani, Ardalan Amiri

PY - 2024/9/4

Y1 - 2024/9/4

N2 - Body-worn medical devices benefit from having a companion mobile application to monitor them and even program them. For example, the companion application for an insulin pump can be used to automatically monitor blood sugar level throughout the day and administer insulin without user input [1]. Unfortunately, the operating systems of modern smartphones cannot provide adequate security guarantees for these applications. Existing Trusted Execution Environment (TEE) solutions aim to alleviate these problems by removing the system software (and even most of the hardware [19]) from the TCB. However, no existing TEE solution provides a critical guarantee needed for these applications: periodic availability. This is needed to ensure that the application is executed according to a requested schedule, e.g., multiple times a day to read the patient's blood sugar and administer insulin. We present our ongoing work on Hora1, a high assurance TEE solution for smartphones that guarantees periodic availability of CPU and I/O with a minimal and formally-verified scheduler. We present the design of Hora as well as its scheduler, which is implemented fully in Rust (in 1583 lines of code) and (partially) formally verified using the Kani model checker [7].

AB - Body-worn medical devices benefit from having a companion mobile application to monitor them and even program them. For example, the companion application for an insulin pump can be used to automatically monitor blood sugar level throughout the day and administer insulin without user input [1]. Unfortunately, the operating systems of modern smartphones cannot provide adequate security guarantees for these applications. Existing Trusted Execution Environment (TEE) solutions aim to alleviate these problems by removing the system software (and even most of the hardware [19]) from the TCB. However, no existing TEE solution provides a critical guarantee needed for these applications: periodic availability. This is needed to ensure that the application is executed according to a requested schedule, e.g., multiple times a day to read the patient's blood sugar and administer insulin. We present our ongoing work on Hora1, a high assurance TEE solution for smartphones that guarantees periodic availability of CPU and I/O with a minimal and formally-verified scheduler. We present the design of Hora as well as its scheduler, which is implemented fully in Rust (in 1583 lines of code) and (partially) formally verified using the Kani model checker [7].

KW - Availability

KW - Mobile computing

KW - TEE

KW - Verification

UR - http://www.scopus.com/inward/record.url?scp=85205090559&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85205090559&partnerID=8YFLogxK

U2 - 10.1145/3678015.3680486

DO - 10.1145/3678015.3680486

M3 - Conference contribution

AN - SCOPUS:85205090559

T3 - APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems

SP - 115

EP - 121

BT - APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems

PB - Association for Computing Machinery, Inc

Y2 - 4 September 2024 through 5 September 2024

ER -

Zueck D, Atallah N, Do I, Yao Z, Sani AA. Hora: High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones. In APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems. Association for Computing Machinery, Inc. 2024. p. 115-121. (APSys 2024 - Proceedings of the 15th ACM SIGOPS Asia-Pacific Workshop on Systems). doi: 10.1145/3678015.3680486

Hora: High Assurance Periodic Availability Guarantee for Life-Critical Applications on Smartphones

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Keywords

Access to Document

Other files and links

Fingerprint

Cite this