随着智能终端和物联网的飞速发展，Arm架构逐渐在市场上扮演更加重要的角色。国内Arm市场也发展迅猛，如华为已把部分底层架构替换成Arm系列。然而，对于Arm架构的硬件安全研究却较为少见，还处于较为初期的阶段。硬件是软件运行的基础，一旦硬件的安全架构出现问题，那必将危及到所有上层软件的安全性。本项目主要是聚焦于Arm硬件调试机制的攻击及防御的研究。首先，为分析Arm调试架构的安全性，研究Arm非入侵和入侵调试机制在不同场景（如传统调试和跨核调试）下的安全风险。其次，为分析Arm调试架构安全漏洞带来的影响，研究商用设备调试功能以及攻击验证。最后，为抵御基于Arm调试架构的攻击，研究低开销通用防御机制在原型机和商用机上的实现。本项目提出基于Arm调试架构的跨核攻击策略、分析对于商用设备的攻击影响、研究高效通用的防御机制，研究成果对提升Arm生态产业链的安全具有理论研究意义和实际应用价值。

Due to the proliferation of smart-endpoint and IoT devices, Arm plays a critical role in the market. Arm market in China also grows rapidly，for example, Huawei switched some hardware architectures to Arm. Unfortunately, the security research on Arm hardware architectures has not gain enough attention and is still at an early stage. Hardware is the foundation of the software execution; bugs in hardware might lead to serious security problems to all upper-layer software. This project focuses on understanding the security of Arm debugging architecture and its key techniques. First, to understand the security implications, we analyze the invasive and non-invasive debugging features with different scenarios such as JTAG and inter-processor debugging. Secondly, to analyze the impact introduced by the vulnerabilities of Arm debugging architecture, we study real-world commercial devices and develop proof-of-concept attacks against them. Last but not least, to defend against the attacks via misusing the Arm debugging architecture, we develop an effective defense mechanism on development boards and commercial devices with a low performance overhead. In summary, this project introduces a novel attack by abusing the inter-processor debugging on Arm, analyzes the impact on commercial products introduced by this attack, and develops an effective defense mechanism; the research outcome of this project is expected to have a broad and positive impact on theoretical research and real-world products.