Upload File

tf-m secure storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · connected devices have secrets!...

  • Home
  • Documents
  • TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning
40
© 2017 Arm Limited Linaro Connect – Hong Kong March 2018 TF-M Secure Storage CE - Open Source Software Ashutosh Singh

Upload: others

Post on 17-Jul-2020

2 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited

LinaroConnect–HongKongMarch2018

TF-MSecureStorage

CE-OpenSourceSoftware

AshutoshSingh

Page 2: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited2

QuickIntroductiontoTF-M

IntroductiontoServices

SecureStorageOverview

SecureStorageDesign

Exampleuse-case

SecureStorageOutlook

Agenda

Pleasefeelfreetointerruptduringthepresentation!

Page 3: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited

TrustedFirmwareMoverview

Page 4: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited4

Introduction

PlatformSecurityarchitecture(PSA)publiclaunchinlate2017

TFMengineeringworkstartedearly2017,PSA–evenearlier

PSA:setofspecs&implementation–whichisTF-M

Page 5: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited5

Non-securePartition

Applicationfirmware

OSlibraries

OSkernel

SecurePartition

Securefunction

Securefunction

TrustedPartition

TrustedFunction

TrustedFunction

TF-MCore

SecurecallAPIandrouting

PartitionManager

SecureDebug

Isolationboundary

SecureProcessingEnvironment(Sbinary)

SecurePartition

SecureIRQ

Crashhandling

SecureDrivers

Non-secureProcessingEnvironment

(NSbinary)

TFMNSAPI

Partition-privatecode

Securefunction

Scheduling

Secureisolation

TF-MFramework

•  Securebootloader

•  Securesysteminit

•  SecurePartitionManagement(SPM)

•  Securefunctioncallrouting

•  IsolationwithinSPE

•  Trustedservices,functions

•  NSPEAPI

•  Buildenvironment

•  Testsuite

•  ...

Page 6: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited6

Non-securePartition

Applicationfirmware

OSlibraries

OSkernel

SecurePartition

Securefunction

Securefunction

TrustedPartition

TrustedFunction

TrustedFunction

TF-MCore

SecurecallAPIandrouting

PartitionManager

SecureDebug

Isolationboundary

SecureProcessingEnvironment(Sbinary)

SecurePartition

SecureIRQ

Crashhandling

SecureDrivers

Non-secureProcessingEnvironment

(NSbinary)

TFMNSAPI

Partition-privatecode

Securefunction

Scheduling

Secureisolation

TF-MTerminologySecurePartitionManager(SPM)

•  Providestheboot,isolationandIPCservicestotheSPE

Partition

•  Theunitofexecution

SecureFunction

•  AsetofrelatedAPIsinvokedthroughsecureIPC

Trustedfunction

•  ASecureFunctionthatprovidesaRootofTrustservice

Page 7: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited

IntroductiontoTF-MServices

Page 8: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited8

SecurePartition/Function/Service

Secureendpointofthesystem

Userauthenticationandaccesspolicybasedservice

Sandboxedtoallowmutualdistrustandlimitthreatvectors

InvokedfromSPEaswellNSPEentities

Independentinteractionwithmultipleentities

MultipleFunctions(SF)insamePartition(SP)

Non-securepartition

Applicationfirmware

OSlibraries

OSkernel

CryptoSecurepartitionSecurefunction

Securefunction

Trustedpartition

Trustedfunction

Trustedfunction

SecurePartitionManager

SecureIPC Secureisolation Securedebug

Isolationboundary

SecureProcessingEnvironmentNon-secure

ProcessingEnvironment

SSTSecurepartitionSecurefunction

Securefunction

Page 9: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited

TF-MSecureStorage

Page 10: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited10

SecureStorageIntroduction

Connecteddeviceshavesecrets!

•  RoTkeys,Communicationskeys,hashes,certificates

•  Vendorsecrets(provisioningkeys,featurecertificates)•  Criticalfordevicesecurityandoperability•  Needfor-

•  Restrictedaccesstoplaintextsecrets

•  Tamperresistance/detection

•  Reliability

Page 11: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited11

SecureStorageIntroduction•  Confidentiality

•  AEADEncryption

•  PolicyBasedAccessControl

•  RedefineAccessGranularity(Read/Write/Reference)

•  Integrity•  AEADAuthentication

•  Availability•  AtomicUpdateOperations

•  PowerFailureSafeDesign

•  Scalability

Confidentiality

AvailabilityIntegrity

Scalability

Page 12: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited12

SSTSystemView

Non-securepartition

Applicationfirmware

OSlibraries

OSkernel

CryptoSecurepartition

CryptoSF

CryptoSF

Trustedpartition

Trustedfunction

Trustedfunction

SecurePartitionManager

SecureIPC Secureisolation Securedebug

Isolationboundary

Non-SecureProcessingEnvironment

SSTCAPI

SecureProcessingEnvironment

SST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

Page 13: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited13

FirstRelease

•  Policybasedaccess•  Compiled-inpolicytable

•  SingleKeyOperation•  AES-GCMForAEAD

•  Atomicaccess,powerfailuresafe

•  CustomFileSystem

SST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

Page 14: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited

TF-MSecureStorageAccessPolicyManagement

Page 15: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited15

AccessPolicyManagement•  Gatekeeperforalltheaccesses•  Placeholderforfutureadditions

•  lifecyclemanagement•  secureassetmanagement

•  Compiletimepolicydefinition

•  Use-case1:DirectAccessfrom(SPEorNSPE)Client•  Read/Write/Deleterequest•  Accesspermissionlookupinpolicydatabase

SST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement Policydatabase

HUKderivedkey

….

Page 16: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited16

AccessPolicyManagement•  Use-case2:Referenced

Access•  Onlyreadinindirectaccess•  ClientasksCryptoto

performacryptographicoperationwiththekeyreference(UUID)

•  CryptomakesareadrequestonNSPEcaller’sbehalf

•  ‘Reference’permissionlookupfortheoriginalNSPEclient

•  OnlySPEcallerallowedtomakereferencedreadonother’sbehalf

Non-securepartition

APP2

OSlibraries

OSkernel

Crypto

CryptoSF

CryptoSF

Trustedpartition

Trustedfunction

Trustedfunction

SecurePartitionManager

SecureIPCSecureisolation Securedebug

Non-SecureProcessingEnvironment

SSTCAPI

SecureProcessingEnvironment

SST

Key1 Cert

Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

APP1

Page 17: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited

TF-MSecureStorageFileSystem

Page 18: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited18

SSTFileSystem–FlashLayoutSST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

MetaBlock

ScratchMetaBlock

DataBlock

DataBlock

ScratchDataBlock

DataBlock •  SetofBlocksear-

marked•  Firsttwoformetadata

block•  Restaredatablocks•  Scratchmetablockand

scratchdatablock

Page 19: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited19

SST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

SSTFileSystem–FlashLayoutContdMetadataBlock

Metaheader

Blockmetadata• Block0Meta• Block1meta• ....

ObjectMetadata• Object0meta• Objectxxmeta

UNUSEDSPACE

Objectxxdata

DataBlock0

Objectxx

Objectyy

Objectzz

Objectaa

Objectbb

UNUSEDSPACE

DataBlock1

Objectcc

Objectdd

Objectee

Objectff

Objectgg

UNUSEDSPACE

•  Metaheader•  Metadataauthentication•  Atomicupdates

•  BlockMetadata•  Logicalblocktophysicalblockinfo•  Infoaboutfreespaceineachblock

•  ObjectMetadata•  Infoaboutanobject’swhereabouts•  Objectauthenticationdata

Page 20: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited

TF-MSecureStorageFlows

Page 21: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited21

KeyDerivationSST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

HardwareUnique

Key(HUK)

KDF

KeyDerivation

Label

SSTKey •  SimpleKeyDerScheme

•  HUK–needstobeuniqueperdevice

•  Implementationstubbed

•  _to_evolve_

Page 22: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited22

AuthenticateEncryptionWithAssociatedDataSST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

Encryption

AuthenticatedData

Data(Plain-text)

AES-GCM

Key

IV

AuthTag

ObjectData(Encrypted)

AuthenticatedDecryption

AuthenticatedData

Data(Encrypted)

AES-GCM

Key

AuthenticationResult

Data(Plain-Text)

AuthTagIV

Page 23: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited23

ObjectEncryption/DecryptionSST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

ObjectEncryption

ObjectMetadata

ObjectData(Plain-text)

AES-GCM

SSTKey

IV

MAC(AuthTag)

ObjectData(Encrypted)

ObjectDecryption

ObjectMetadata

ObjectData(Encrypted)

AES-GCM

SSTKey

AuthenticationResult

ObjectData(Plain-Text)

MAC IV

Page 24: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited24

SST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

Boot-MetadataBlockAuthentication

MetaBlockAuthentication

Metadataheader

BlockMetadata AES-GCMAuth

SSTKey

AuthenticationResult

MAC IV

ObjectMetadata

Page 25: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited25

SST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

WriteOperation(Simplified)

WriteRequest EncryptContent WritetoScratchDataBlock

UpdateScratchMetadataBlock

UpdateScratchMetadataheader(IV,SwapCount,

MAC)

EraseActiveMetadata

EraseActivedatablock Done

Page 26: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited26

MetaBlockAuthentication

SST

Key Cert Hash

FileSystem(orproxy)

Cryptographicbinding

AccessPolicyManagement

Policydatabase

HUKderivedkey

….

WriteOperation(..NotSimplified)

ObjectData Encrypt

ScratchDataBlock

ObjectData

ObjectData

ObjectData

ScratchMetaBlock

MAC

SwapCounter

IV

LBlockMetaLBlockMeta

ObjectMetaObjectMetaObjectMeta

ActiveMetaBlock

MAC

SwapCounter

IV

LBlockMetaLBlockMeta

ObjectMetaObjectMetaObjectMeta

ActiveDataBlock

ObjectData

ObjectData

ObjectDataIncrementSwapCounterGenerate/Store

MACforMetadata

EraseActiveMetablock

EraseActiveDataBlock

SwapActive/scrathblocks

Page 27: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited27

APIs

tfm_sst_get_handle(uint16_tasset_uuid,uint32_t*hdl);

tfm_sst_create(uint16_tasset_uuid);

tfm_sst_get_attributes(uint32_tasset_handle,structtfm_sst_attribs_t*attrib_struct);

tfm_sst_read(uint32_tasset_handle,structtfm_sst_buf_t*data);

tfm_sst_write(uint32_tasset_handle,structtfm_sst_buf_t*data);

tfm_sst_delete(uint32_tasset_handle);

Page 28: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited28

ReferenceUse-case

Non-securepartition

Applicationfirmware

IPStack

OSkernel

CryptoSecurepartitionSecurefunction

Securefunction

Trustedpartition

Trustedfunction

Trustedfunction

SecurePartitionManager

SecureIPC Secureisolation Securedebug

Isolationboundary

SecureProcessingEnvironmentNon-secure

ProcessingEnvironment

SSTSecurepartition

TLSKey/Cert

TLS

Page 29: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited

SecureStorageOutlook

Page 30: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited30

SecureStorageOutlook

•  Rollbackprotection,re-doIVscheme

•  Keydiversification,passwordbasedaccess,keyhiding•  Securityproperties(keytype,restrictions)•  Lifecyclemanagement

•  Evolutionofuserauthentication•  Handlingvariousstoragedevicetopologies•  CompiletimeFlashLayoutgeneration

•  ToolingWorkOngoingforotherservices(Crypto,AuditLogging)

Page 31: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited31

HowtogetinvolvedTF-AandTF-Mmastercodebases•  https://git.trustedfirmware.org/

TF-MTeam@ConnectHKG18•  AbhishekPandit

•  AshutoshSingh

•  TamasBan

•  MiklosBalint

Getintouch•  ComeroundLITEhackingroombetween3-4pmWednesday

•  Scheduleameetingviahkg18.pathable.com

Moreinfoondeveloper.arm.com

Page 32: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited32

?

Page 33: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

3333

ThankYou!Danke!Merci!谢谢!ありがとう!Gracias!Kiitos!감사합니다धन्यवाद

©2017ArmLimited

Page 34: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited34

SecureStorageOutlook(OpenDiscussion)

•  Rollbackprotection•  InternalFlashbaseddesign(tostorerollbackcountersecurely)?

•  OTP/E-FuseBasedDesign(tostorerollbackcountersecurely)?

•  Canitbetiedtofirmwareupdate?

•  Couldwepartitionintorollbackprotectedandnonrollbackprotected?

Page 35: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited35

SecureStorageOutlook(OpenDiscussion)

•  Keydiversification,passwordbasedaccess,keyhiding•  KeydiversificationperClient?

•  Token(password)basedkeyderivation?

•  ErasurePolicy?

Page 36: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited36

SecureStorageOutlook(OpenDiscussion)

•  Lifecyclemanagement•  SecureTimebasedlifecyclemanagement?

•  Usagecountbasedlifecyclemanagement?

Page 37: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited37

SecureStorageOutlook(OpenDiscussion)

•  Evolutionofuserauthentication•  CurrentlypartitionIDbased

•  Doesitneedtobemoresophisticated?(challengeresponsebased?)

Page 38: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited38

SecureStorageOutlook(OpenDiscussion)

•  Handlingvariousstoragedevicetopologies•  Dedicatedflashdeviceforsecurestorage?

•  Multi-headedflashdevice?

•  Usingsameflashfornon-secureandsecurestorage?

•  UsingNSPEfilesystem?

Page 39: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited39

SecureStorageOutlook(OpenDiscussion)

•  CompileTimeFlashLayout•  Deterministicstoragerequirement

•  Generatetheflash-layout(i.e.whatisstoredwhere)atcompiletime

•  Reducedcodesize/complexityattheruntime

Page 40: TF-M Secure Storageconnect.linaro.org.s3.amazonaws.com/hkg18/... · Connected devices have secrets! • RoT keys, Communications keys, hashes, certificates • Vendor secrets (provisioning

©2017ArmLimited40

SecureStorageOutlook(OpenDiscussion)

•  Tooling•  Toolingtosupporteasydefinitionofpolicytable

•  Provision’ablePolicyDatabase(currentlycompiled-in)


Huawei HiAI Unlock the Future - connect.linaro.org.s3 ...connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-302.pdf · The HiAI mobile computing platform supports 8-bit

HKG18-TR01: Open Source Philosophyconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/... · 2018-04-03 · Open Source Origin 60’s 70’s 80’s 90’s 1990 : GNU project:

Unlocking the secrets of vehicle keys -- design, technology, costs technology, use and costs

The Black Keys - Piano · PDF file3 Chapter THE SECRETS OF SIGHT READING PIANO MUSIC The Black Keys Double agents that hold the key to other keys xcept for B flat, we’ve not discussed

Voice.AI Gateway Product Description Ver. 2...6.9 Azure Key Vault for Secure Secrets Storage Typically, secrets or keys for accessing the Customer's bot framework provider are configured

HKG18-220: State of Big Data on AArch64 - Apache BigTop

HKG18-118: OpenDataPlane Testing in Travis and Shippableconnect.linaro.org.s3.amazonaws.com/hkg18/... · Shippable through the magnifying glass x86-64 or AArch64 architecture Docker

Postmortem Debugging with Coresight HKG18-TR14connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-tr14.pdfUse kexec to load capture-dump kernel and dtb Step 3: Run test case

Split and Conquer! Don’t Put All Your Keys in One Basket · Split and Conquer! Don’t Put All Your Keys ... Master key can be reconstructed ... Avoid storing secrets on mobile

HKG18-407: Hypervisors and IoT (IoT Secret Storage)connect.linaro.org.s3.amazonaws.com/hkg18/... · PSK common in IoT, needs fewer resources Key install at provision time If key leaks,

HKG18-415: TSN and Linux

HKG18-007896-03 EC 4190536...Verification Report

HKG18-124 Android Verified Boot 2.0 and U-bootconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-1… · Suggestion: Use RPMB partition on eMMC. Problem: private key, used

EAS in Android Common Kernelconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-501.pdf · • android-4.4-eas-test (android-4.9-eas-test later) • Test branch is against

HKG18-219: Threat Modeling for IoT - Amazon Web Servicesconnect.linaro.org.s3.amazonaws.com/hkg18/... · WiFi password wasn’t very random, guess space in the dozens Chained through

DOV and NUT Codes Secrets to Success - Iowa Secrets to... · DOV and NUT Codes Secrets to Success Property Tax Division February 16, 2016 . Today’s Agenda • DOV Journey ... keys

SUPER IMMUNITY SECRETS...SUPER IMMUNITY SECRETS: Seven research-backed keys to balance, boost, and supercharge your body’s immune system. Health is on everyone’s minds at the moment

Linaro Developer Cloud - Updatesconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-307.pdfControl plane, networking and compute. 31 hypervisors, totalizing 346 VCPUs and

Experience OPNFV on Arm - Amazon Web Servicesconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-1… · Deploy OPNFV on Arm –A frustrating experience Fuel installer -

HKG18-419: OpenHPC on Ansible Easier …connect.linaro.org.s3.amazonaws.com/hkg18/presentations/...The reasons why Ansible is the best solution for the OpenHPC deployment The most

29 Pro Cycling Secrets for Roadies Secrets - Road Bike Rider.pdfThink Like a Climber . Three keys to better climbing are (1) mental attitude, (2) light bodyweight and (3) smart tactics

ARM64 Server RAS Solutionsconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-116.pdf · Building blocks Reflections. Overview Reliability, Availability, Serviceability

HKG18-124 Android Verified Boot 2.0 and U-boot

Using the Clang Developer Tools - Amazon Web Servicesconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-tr04.pdf · Clang tools Clang is designed to be much more than just

HKG18-203: Overview of Linaro DRMconnect.linaro.org.s3.amazonaws.com/hkg18/... · OpenCDM / CDMi architecture Browser OpenCDM [1] CDMi Service [2] cdmi.h Interface for various key

Keys to Facilitating the Strategic Planning Processleadstrat.com/wp-content/uploads/sfs-workbook-rs.pdf · Keys to Facilitating the Strategic Planning Process Adapted from The Secrets

Trusted Firmware M - Amazon Web Servicesconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-223.pdf · Firmware Storage Server Runtime firmware Local Storage BL2 - Bootloader

LNG Tech Lead, ODP Project Bill Fischoferconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-106.pdf · Bill Fischofer LNG Tech Lead, ODP Project. Topics for Today Brief

The practical experience of IFAA - Amazon Web Servicesconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-320.pdf · Financial、Alibaba、Huawei、SAMSUNG 、ZTE、CAICT

HKG18 TR12 - LAVA for LITE Platforms and Testsconnect.linaro.org.s3.amazonaws.com/hkg18/... · HKG18 TR12 - LAVA for LITE Platforms and Tests Bill Fletcher. Part1 LAVA overview and

5 Keys to Investing Successsums of money by applying five keys to investment success. these are keys, not secrets. In truth, there are no investment secrets. this booklet presents

8 Secrets of Centarians Keys to Longevity

Presents: Secrets of the Centenarians - White Tiger Qigong€¦ · Presents: Secrets of the Centenarians Their 8 Keys to Longevity & Action Plan ANCIENT STRATEGIES OF HOW TO LIVE

HKG18-220: State of Big Data on AArch64 - Apache BigTopconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/... · 2018-04-03 · Apache giraph v1.1.0 Apache phoenix v4.9.0-HBase-1.1

Arm ServerReady Update - Amazon Web Servicesconnect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-317.pdfTwo discussion channels: Partner to Arm over [email protected]