A Security Architecture for MicroprocessorsDoctoral ThesisJ org PlatteGenehmigte Dissertation zurErlangung des akademischen Grades eines Doktors an derFakult at fur Elektrotechnik und InformationstechnikTechnischen Universit at DortmundAbteilung InformationstechnikInstitut fur Roboterforschung06.11.2008IIAcknowledgementsIt is my pleasure to thank all the people who supported me to make this thesis possible.Prufungsk ommission: Prof. Dr.-Ing. Christian Rehtanz (Vorsitzender) Prof. Dr.-Ing. Uwe Schwiegelshohn (Referent) Prof. Dr.-Ing. Christian Grimm (Korreferent) Dr.-Ing. Wolfgang EndemannIIIAbstractThe Security Architecture for Microprocessors (SAM ) is a lightweight and high-performancecombined hard- and software security extension for microprocessors. SAM has been designedto provide a secure remote code execution environment. It can be used to implement e ectivecopy-protection schemes and provides mechanisms to prevent data and algorithm disclosure.SAM provides protection even if an attacker has full access to both the operating system andhardware. SAM uses an enhanced processor core which can be used as a drop in replacementfor a standard processor to provide transparent encryption and hashing of memory contents toprevent external tampering and sni ng attacks. Further internal security-related extensionssupport a secure operating system implementation. Both the hardware and software designare presented in this thesis.