OpenCCA: An Open Framework to Enable Arm CCA Research
By: Andrin Bertschi, Shweta Shinde
Potential Business Impact:
Lets researchers test new secure computer chips.
Confidential computing has gained traction across major architectures with Intel TDX, AMD SEV-SNP, and Arm CCA. Unlike TDX and SEV-SNP, a key challenge in researching Arm CCA is the absence of hardware support, forcing researchers to develop ad-hoc performance prototypes on non-CCA Arm boards. This approach leads to duplicated efforts, inconsistent performance comparisons, and high barriers to entry. To address this, we present OpenCCA, an open research platform that enables the execution of CCA-bound code on commodity Armv8.2 hardware. By systematically adapting the software stack -- including bootloader, firmware, hypervisor, and kernel -- OpenCCA emulates CCA operations for performance evaluation while preserving functional correctness. We demonstrate its effectiveness with typical life-cycle measurements and case-studies inspired by prior CCA-based papers on a easily available Armv8.2 Rockchip board that costs $250.
Similar Papers
An Early Experience with Confidential Computing Architecture for On-Device Model Protection
Cryptography and Security
Keeps phone AI private and fast.
NanoZone: Scalable, Efficient, and Secure Memory Protection for Arm CCA
Cryptography and Security
Protects computer parts inside a running program.
Confidential, Attestable, and Efficient Inter-CVM Communication with Arm CCA
Cryptography and Security
Lets computers securely share secret information.