English
Related papers

Related papers: Securing Application with Software Partitioning: A…

200 papers

A protocol for two-party secure function evaluation (2P-SFE) aims to allow the parties to learn the output of function $f$ of their private inputs, while leaking nothing more. In a sense, such a protocol realizes a trusted oracle that…

Integrity is critical for maintaining system security, as it ensures that only genuine software is loaded onto a machine. Although confidential virtual machines (CVMs) function within isolated environments separate from the host, it is…

Cryptography and Security · Computer Science 2024-10-25 Wenhao Wang , Linke Song , Benshan Mei , Shuang Liu , Shijun Zhao , Shoumeng Yan , XiaoFeng Wang , Dan Meng , Rui Hou

The popularity of the Java programming language has led to its wide adoption in cloud computing infrastructures. However, Java applications running in untrusted clouds are vulnerable to various forms of privileged attacks. The emergence of…

Cryptography and Security · Computer Science 2025-10-14 Peterson Yuhala , Jämes Ménétrey , Pascal Felber , Valerio Schiavoni , Alain Tchana , Gaël Thomas , Hugo Guiroux , Jean-Pierre Lozi

As an emerging technique for confidential computing, trusted execution environment (TEE) receives a lot of attention. To better develop, deploy, and run secure applications on a TEE platform such as Intel's SGX, both academic and industrial…

Cryptography and Security · Computer Science 2021-09-07 Weijie Liu , Hongbo Chen , XiaoFeng Wang , Zhi Li , Danfeng Zhang , Wenhao Wang , Haixu Tang

Intel(r) Software Guard Extensions (SGX) was originally released on client platforms and later extended to single socket server platforms. As developers have become familiar with the capabilities of the technology, the applicability of this…

Distributed, Parallel, and Cluster Computing · Computer Science 2025-07-14 Simon Johnson , Raghunandan Makaram , Amy Santoni , Vinnie Scarlata

Trusted Execution Environments (TEEs), such as Intel's Software Guard Extensions (SGX), are increasingly being adopted to address trust and compliance issues in the public cloud. Intel SGX's second generation (SGXv2) addresses many…

Databases · Computer Science 2025-01-24 Adrian Lutsch , Muhammad El-Hindi , Matthias Heinrich , Daniel Ritter , Zsolt István , Carsten Binnig

This paper presents SgxPectre Attacks that exploit the recently disclosed CPU bugs to subvert the confidentiality and integrity of SGX enclaves. Particularly, we show that when branch prediction of the enclave code can be influenced by…

Cryptography and Security · Computer Science 2019-09-12 Guoxing Chen , Sanchuan Chen , Yuan Xiao , Yinqian Zhang , Zhiqiang Lin , Ten H. Lai

The big data industry is facing new challenges as concerns about privacy leakage soar. One of the remedies to privacy breach incidents is to encapsulate computations over sensitive data within hardware-assisted Trusted Execution…

Software Engineering · Computer Science 2020-05-12 Pei Wang , Yu Ding , Mingshen Sun , Huibo Wang , Tongxin Li , Rundong Zhou , Zhaofeng Chen , Yiming Jing

Intel SGX Guard eXtensions (SGX), a hardware-supported trusted execution environment (TEE), is designed to protect security-sensitive applications. However, since enclave applications are developed with memory unsafe languages such as…

Cryptography and Security · Computer Science 2020-05-14 Huibo Wang , Mingshen Sun , Qian Feng , Pei Wang , Tongxin Li , Yu Ding

Hardware-supported security mechanisms like Intel Software Guard Extensions (SGX) provide strong security guarantees, which are particularly relevant in cloud settings. However, their reliance on physical hardware conflicts with cloud…

Cryptography and Security · Computer Science 2018-10-04 Fritz Alder , Arseny Kurnikov , Andrew Paverd , N. Asokan

Intel software guard extensions (SGX) aims to provide an isolated execution environment, known as an enclave, for a user-level process to maximize its confidentiality and integrity. In this paper, we study how uninitialized data inside a…

Cryptography and Security · Computer Science 2017-10-26 Sangho Lee , Taesoo Kim

Trusted execution environments (TEEs) are an integral part of modern secure processors. They ensure that their application and code pages are confidential, tamper proof and immune to diverse types of attacks. In 2021, Intel suddenly…

Cryptography and Security · Computer Science 2024-07-19 Ani Sunny , Nivedita Shrivastava , Smruti R. Sarangi

Computer systems often provide hardware support for isolation mechanisms like privilege levels, virtual memory, or enclaved execution. Over the past years, several successful software-based side-channel attacks have been developed that…

Cryptography and Security · Computer Science 2020-01-30 Matteo Busi , Job Noorman , Jo Van Bulck , Letterio Galletta , Pierpaolo Degano , Jan Tobias Mühlberg , Frank Piessens

In this paper, we explore a new, yet critical, side-channel attack against Intel Software Guard Extension (SGX), called a branch shadowing attack, which can reveal fine-grained control flows (i.e., each branch) of an enclave program running…

Cryptography and Security · Computer Science 2017-06-05 Sangho Lee , Ming-Wei Shih , Prasun Gera , Taesoo Kim , Hyesoon Kim , Marcus Peinado

Trusted execution environments (TEE) such as Intel's Software Guard Extension (SGX) have been widely studied to boost security and privacy protection for the computation of sensitive data such as human genomics. However, a performance…

Cryptography and Security · Computer Science 2021-07-28 Chathura Widanage , Weijie Liu , Jiayu Li , Hongbo Chen , XiaoFeng Wang , Haixu Tang , Judy Fox

The latest generation of Intel processors supports Software Guard Extensions (SGX), a set of instructions that implements a Trusted Execution Environment (TEE) right inside the CPU, by means of so-called enclaves. This paper presents…

Performance · Computer Science 2019-06-27 Sébastien Vaucher , Valerio Schiavoni , Pascal Felber

With the evolution of computer systems, the amount of sensitive data to be stored as well as the number of threats on these data grow up, making the data confidentiality increasingly important to computer users. Currently, with devices…

Modern CPU architectures offer strong isolation guarantees towards user applications in the form of enclaves. For instance, Intel's threat model for SGX assumes fully trusted enclaves, yet there is an ongoing debate on whether this threat…

Cryptography and Security · Computer Science 2019-02-12 Michael Schwarz , Samuel Weiser , Daniel Gruss

The widening availability of hardware-based trusted execution environments (TEEs) has been accelerating the adaptation of new applications using TEEs. Recent studies showed that a cloud application consists of multiple distributed software…

Cryptography and Security · Computer Science 2022-12-23 Joongun Park , Seunghyo Kang , Sanghyeon Lee , Taehoon Kim , Jongse Park , Youngjin Kwon , Jaehyuk Huh

One single error can result in a total compromise of all security in today's large, monolithic software. Partitioning of software can help simplify code-review and verification, whereas isolated execution of software-components limits the…

Cryptography and Security · Computer Science 2017-06-16 Alexander Senier , Martin Beck , Thorsten Strufe