November DC206 Meeting: Microarchitectural Attacks on Trusted Execution Environments

Posted in Uncategorized at 06:59 by admin

What: November DC206 Meeting, Locksport, and BBQ
When: Nov 18th (3rd Sundays), 11:00am-~4:00pm
Where: Black Lodge Research
Who: (Keegan, Spooney, Dune, Panic, and the DC206 community)

** 11:00am-1:00pm: LOCKSPORT EVENT:

Dune will be running a Locksport event, starting at 11:00 until 1:00.


Microarchitectural Attacks on Trusted Execution Environments
Keegan Ryan

Trusted Execution Environments (TEEs), like those based on ARM TrustZone or Intel SGX, intend to provide a secure way to run code beyond the typical reach of a computer’s operating system.

However, when trusted and untrusted code runs on shared hardware, it opens the door to the same microarchitectural attacks that have been exploited for years. This talk provides an overview of these attacks as they have been applied to TEEs, and it additionally demonstrates how to mount these attacks on common TrustZone implementations. Finally, we identify new techniques which allow us to peer within TrustZone TEEs with greater resolution than ever before.

Keegan Ryan has been a senior security consultant with NCC Group since June 2016, working primarily from Seattle. Keegan has experience with wireless protocols, reverse engineering embedded systems, TrustZone exploitation, virtualization, and cryptography. Prior to joining NCC Group, Keegan attended the California Institute of Technology, studying machine learning and applied mathematics.

This event will be videotaped by Panic. During event, remote users can interactively ask questions to speaker. You’ll need to sign in to Google Chat on the below Youtube URL. If you cannot attend, here’s the URL for the live streaming (and afterward, a copy of the video):


** post-EVENT BBQ:

The BBQ starts after the presentation ends. This month the chef will be Spooney. We’re planning hamburgers and some brats. I believe Ben is making Mulled Wine this month.

We’d welcome some additional dishes, as well as some decent hard ciders and beers. You can donate to the Black Lodge Research directly:


Black Lodge Research:
17725 NE 65th St, A-155; Evans Business Park, Bldg A; Redmond, WA 98052
Building A, mid-building, between the coffee roaster and the security company.
Park facing the street, not in front of other businesses, or you may get towed.

Black Lodge Research

Redmond, WA
177 Members

Anyone interested in Information Security should checkout Black Lodge Research. Members can attend talks each month on a variety of topics and skill levels. Every Thursday BLR…

Next Meetup

Open Hack Night

Thursday, Nov 8, 2018, 7:00 PM
1 Attending

Check out this Meetup Group →




Comments are closed.