English
Related papers

Related papers: Malware Guard Extension: Using SGX to Conceal Cach…

200 papers

Cloud computing offers resource-constrained users big-volume data storage and energy-consuming complicated computation. However, owing to the lack of full trust in the cloud, the cloud users prefer privacy-preserving outsourced data…

Cryptography and Security · Computer Science 2021-06-29 Wenxiu Ding , Wei Sun , Zheng Yan , Robert H. Deng

This paper presents SgxPectre Attacks that exploit the recently disclosed CPU bugs to subvert the confidentiality and integrity of SGX enclaves. Particularly, we show that when branch prediction of the enclave code can be influenced by…

Cryptography and Security · Computer Science 2019-09-12 Guoxing Chen , Sanchuan Chen , Yuan Xiao , Yinqian Zhang , Zhiqiang Lin , Ten H. Lai

Modern processors can offer hardware primitives that allow a process to run in isolation. These primitives implement a trusted execution environment (TEE) in which a program can run such that the integrity and confidentiality of its…

Cryptography and Security · Computer Science 2021-05-14 Pedro Antonino , Wojciech Aleksander Wołoszyn , A. W. Roscoe

Hardware-supported security mechanisms like Intel Software Guard Extensions (SGX) provide strong security guarantees, which are particularly relevant in cloud settings. However, their reliance on physical hardware conflicts with cloud…

Cryptography and Security · Computer Science 2018-10-04 Fritz Alder , Arseny Kurnikov , Andrew Paverd , N. Asokan

Intel software guard extensions (SGX) aims to provide an isolated execution environment, known as an enclave, for a user-level process to maximize its confidentiality and integrity. In this paper, we study how uninitialized data inside a…

Cryptography and Security · Computer Science 2017-10-26 Sangho Lee , Taesoo Kim

Since its debut, SGX has been used in many applications, e.g., secure data processing. However, previous systems usually assume a trusted enclave and ignore the security issues caused by an untrusted enclave. For instance, a vulnerable (or…

Cryptography and Security · Computer Science 2020-10-26 Yuan Chen , Jiaqi Li , Guorui Xu , Yajin Zhou , Zhi Wang , Cong Wang , Kui Ren

Intel SGX (Software Guard Extension) is a promising TEE (trusted execution environment) technique that can protect programs running in user space from being maliciously accessed by the host operating system. Although it provides hardware…

Cryptography and Security · Computer Science 2022-08-24 Yang Chen , Jianfeng Jiang , Shoumeng Yan , Hui Xu

Content-based routing (CBR) is a powerful model that supports scalable asynchronous communication among large sets of geographically distributed nodes. Yet, preserving privacy represents a major limitation for the wide adoption of CBR,…

Distributed, Parallel, and Cluster Computing · Computer Science 2017-01-18 Rafael Pires , Marcelo Pasin , Pascal Felber , Christof Fetzer

New hardware primitives such as Intel SGX secure a user-level process in presence of an untrusted or compromised OS. Such "enclaved execution" systems are vulnerable to several side-channels, one of which is the page fault channel. In this…

Cryptography and Security · Computer Science 2016-01-13 Shweta Shinde , Zheng Leong Chua , Viswesh Narayanan , Prateek Saxena

Intel SGX enables memory isolation and static integrity verification of code and data stored in user-space memory regions called enclaves. SGX effectively shields the execution of enclaves from the underlying untrusted OS. Attackers cannot…

Cryptography and Security · Computer Science 2022-06-16 Flavio Toffalini , Mathias Payer , Jianying Zhou , Lorenzo Cavallaro

The deep learning revolution has been enabled in large part by GPUs, and more recently accelerators, which make it possible to carry out computationally demanding training and inference in acceptable times. As the size of machine learning…

Cryptography and Security · Computer Science 2022-03-31 Sankha Baran Dutta , Hoda Naghibijouybari , Arjun Gupta , Nael Abu-Ghazaleh , Andres Marquez , Kevin Barker

Hardware support for trusted execution in modern CPUs enables tenants to shield their data processing workloads in otherwise untrusted cloud environments. Runtime systems for the trusted execution must rely on an interface to the untrusted…

Operating Systems · Computer Science 2020-01-22 Christian Priebe , Divya Muthukumaran , Joshua Lind , Huanzhou Zhu , Shujie Cui , Vasily A. Sartakov , Peter Pietzuch

Application security traditionally strongly relies upon security of the underlying operating system. However, operating systems often fall victim to software attacks, compromising security of applications as well. To overcome this…

Cryptography and Security · Computer Science 2017-01-05 Samuel Weiser , Mario Werner

A promising approach for designing critical embedded systems is based on virtualization technologies and multi-core platforms. These enable the deployment of both real-time and general-purpose systems with different criticalities in a…

Software Engineering · Computer Science 2019-09-23 Luigi De Simone , Giovanni Mazzeo

We explore the use of SGX enclaves as a means to improve the security of handling keys and data in storage systems. We study two main configurations for SGX computations, as they apply to performing data-at-rest encryption in a storage…

Cryptography and Security · Computer Science 2018-06-29 Danny Harnik , Eliad Tsfadia , Doron Chen , Ronen Kat

Protected-module architectures (PMAs) have been proposed to provide strong isolation guarantees, even on top of a compromised system. Unfortunately, Intel SGX -- the only publicly available high-end PMA -- has been shown to only provide…

Cryptography and Security · Computer Science 2017-12-25 Raoul Strackx , Frank Piessens

The latest generation of Intel processors supports Software Guard Extensions (SGX), a set of instructions that implements a Trusted Execution Environment (TEE) right inside the CPU, by means of so-called enclaves. This paper presents…

Performance · Computer Science 2019-06-27 Sébastien Vaucher , Valerio Schiavoni , Pascal Felber

Cache side-channel attacks lead to severe security threats to the settings that a CPU is shared across users, e.g., in the cloud. The existing attacks rely on sensing the micro-architectural state changes made by victims, and this…

Cryptography and Security · Computer Science 2021-03-09 Junpeng Wan , Yanxiang Bi , Zhe Zhou , Zhou Li

Trusted Execution Environments (TEEs), such as Intel's Software Guard Extensions (SGX), are increasingly being adopted to address trust and compliance issues in the public cloud. Intel SGX's second generation (SGXv2) addresses many…

Databases · Computer Science 2025-01-24 Adrian Lutsch , Muhammad El-Hindi , Matthias Heinrich , Daniel Ritter , Zsolt István , Carsten Binnig

User programs recover from hardware exceptions and respond to signals by executing custom handlers that they register specifically for such events. We present SIGY attack, which abuses this programming model on Intel SGX to break the…

Cryptography and Security · Computer Science 2024-04-23 Supraja Sridhara , Andrin Bertschi , Benedict Schlüter , Shweta Shinde