LDR: Secure and Efficient Linux Driver Runtime for Embedded TEE Systems
Huaiyu Yan
Network and Distributed System Security (NDSS) Symposium 2024 · Day 1 · Firmware
This talk introduces the Linux Driver Runtime, or **LDR**, a novel execution environment designed to bring robust, secure, and efficient device driver support to **Trusted Execution Environments (TEEs)**, particularly those leveraging **ARM TrustZone**. Given by Huaiyu Yan, the presentation addresses a critical limitation of compact TEE operating systems (OSes) like OP-TEE: their inherently limited and often inefficient device driver support. This deficiency significantly impedes the deployment of I/O-intensive secure services within the secure world, forcing developers to either painstakingly port complex Linux drivers (bloating the **Trusted Computing Base, or TCB**) or resort to performance-hindering emulation or frequent world switches.