HybridTEE: secure and privacy-preserving mobile DNN execution using hybrid trusted execution environment

RUcore: Rutgers University Community Repository

Search
- All
- Text
- Images
- Audio
- Video
Advanced Search | Help

Search all content in all RUcore collections.
Services
Collections

Help Contact Us My Account

Home

Resource

Staff View

HybridTEE: secure and privacy-preserving mobile DNN execution using hybrid trusted execution environment

Descriptive Metadata

Rights Metadata

Technical Metadata

Descriptive

TitleInfo

Title

HybridTEE: secure and privacy-preserving mobile DNN execution using hybrid trusted execution environment

Name (type = personal)

NamePart (type = family)

Gangal

NamePart (type = given)

Akshay

NamePart (type = date)

1993-

DisplayForm

Akshay Gangal

Role

RoleTerm (authority = RULIB)

author

Name (type = personal)

NamePart (type = family)

Wei

NamePart (type = given)

Sheng

DisplayForm

Sheng Wei

Affiliation

Advisory Committee

Role

RoleTerm (authority = RULIB)

chair

Name (type = personal)

NamePart (type = family)

Zonouz

NamePart (type = given)

Saman

DisplayForm

Saman Zonouz

Affiliation

Advisory Committee

Role

RoleTerm (authority = RULIB)

internal member

Name (type = personal)

NamePart (type = family)

Chen

NamePart (type = given)

Yingying

DisplayForm

Yingying Chen

Affiliation

Advisory Committee

Role

RoleTerm (authority = RULIB)

internal member

Name (type = corporate)

NamePart

Rutgers University

Role

RoleTerm (authority = RULIB)

degree grantor

Name (type = corporate)

NamePart

School of Graduate Studies

Role

RoleTerm (authority = RULIB)

school

TypeOfResource

Text

Genre (authority = marcgt)

theses

Genre (authority = ExL-Esploro)

ETD graduate

OriginInfo

DateCreated (qualifier = exact); (encoding = w3cdtf); (keyDate = yes)

2020

DateOther (type = degree); (qualifier = exact); (encoding = w3cdtf)

2020-10

Language

LanguageTerm (authority = ISO 639-3:2007); (type = text)

English

Abstract (type = abstract)

Deep neural networks (DNNs) have been increasingly adopted in many mobile applications involving security/privacy sensitive data and inference models. Therefore, there is an urgent demand for security and privacy protection of DNN execution on mobile devices. Catering to this demand, hardware-based trusted execution environments (TEEs), such as ARM TrustZone, have recently been considered for secure mobile DNN execution. However, none of the existing attempts of running DNN in TrustZone have been successful due to the stringent resource and performance limitations posed by the mobile TEE. We develop HybridTEE, a novel hardware-based security framework to securely execute DNN in the resource-constrained local TEE (i.e., ARM TrustZone), by offloading a part of the DNN model to a resource-rich remote TEE (i.e., Intel SGX). The key design of HybridTEE is two-fold. First, it strategically divides the DNN model into privacy-aware local (TrustZone) and remote (SGX) partitions by employing two privacy-oriented metrics based on object recognition and Scale Invariant Feature Transform (SIFT). Second, it builds a trustworthy communication channel bridging TrustZone and SGX to enable secure offloading of the DNN model between the two TEEs. Our evaluations based on a prototype implementation of HybridTEE and 4 popular DNN models indicate enhanced security and a 1.75x - 3.5x speedup compared to mobile-only DNN execution without TEE.

Subject (authority = local)

Topic

Deep neural networks

Subject (authority = RUETD)

Topic

Electrical and Computer Engineering

RelatedItem (type = host)

TitleInfo

Title

Rutgers University Electronic Theses and Dissertations

Identifier (type = RULIB)

ETD

Identifier

ETD_11106

PhysicalDescription

Form (authority = gmd)

InternetMediaType

application/pdf

InternetMediaType

text/xml

Extent

1 online resource (viii, 36 pages) : illustrations

Note (type = degree)

M.S.

Note (type = bibliography)

Includes bibliographical references

RelatedItem (type = host)

TitleInfo

Title

School of Graduate Studies Electronic Theses and Dissertations

Identifier (type = local)

rucore10001600001

Location

PhysicalLocation (authority = marcorg); (displayLabel = Rutgers, The State University of New Jersey)

NjNbRU

Identifier (type = doi)

doi:10.7282/t3-e7j4-c004

Back to the top

Rights

RightsDeclaration (ID = rulibRdec0006)

The author owns the copyright to this work.

RightsHolder (type = personal)

Name

FamilyName

Gangal

GivenName

Akshay

Role

RightsEvent

Type

Permission or license

DateTime (encoding = w3cdtf); (qualifier = exact); (point = start)

2020-08-25 18:12:59

AssociatedEntity

Name

Akshay Gangal

Role

Affiliation

Rutgers University. School of Graduate Studies

AssociatedObject

Type

License

Name

Author Agreement License

Detail

I hereby grant to the Rutgers University Libraries and to my school the non-exclusive right to archive, reproduce and distribute my thesis or dissertation, in whole or in part, and/or my abstract, in whole or in part, in and from an electronic format, subject to the release date subsequently stipulated in this submittal form and approved by my school. I represent and stipulate that the thesis or dissertation and its abstract are my original work, that they do not infringe or violate any rights of others, and that I make these grants as the sole owner of the rights to my thesis or dissertation and its abstract. I represent that I have obtained written permissions, when necessary, from the owner(s) of each third party copyrighted matter to be included in my thesis or dissertation and will supply copies of such upon request by my school. I acknowledge that RU ETD and my school will not distribute my thesis or dissertation or its abstract if, in their reasonable judgment, they believe all such rights have not been secured. I acknowledge that I retain ownership rights to the copyright of my work. I also retain the right to use all or part of this thesis or dissertation in future works, such as articles or books.

RightsEvent

Type

Embargo

DateTime (encoding = w3cdtf); (qualifier = exact); (point = start)

2020-10-31

DateTime (encoding = w3cdtf); (qualifier = exact); (point = end)

2021-05-02

Detail

Access to this PDF has been restricted at the author's request. It will be publicly available after May 2nd, 2021.

Status

Availability

Status

Open

Reason

Permission or license

Back to the top

Technical

RULTechMD (ID = TECHNICAL1)

ContentModel

ETD

OperatingSystem (VERSION = 5.1)

windows xp

CreatingApplication

Version

1.5

DateCreated (point = end); (encoding = w3cdtf); (qualifier = exact)

2020-08-22T20:41:42

DateCreated (point = end); (encoding = w3cdtf); (qualifier = exact)

2020-08-22T20:41:42

ApplicationName

pdfTeX-1.40.20

Back to the top

Version 8.5.5