English
Related papers

Related papers: Downgrade Attack on TrustZone

200 papers

Attestation is a fundamental building block to establish trust over software systems. When used in conjunction with trusted execution environments, it guarantees that genuine code is executed even when facing strong attackers, paving the…

Cryptography and Security · Computer Science 2022-04-19 Jämes Ménétrey , Christian Göttel , Marcelo Pasin , Pascal Felber , Valerio Schiavoni

Trust is the core building block of secure systems, and it is enforced through methods to ensure that a specific system is properly configured and works as expected. In this context, a Root of Trust (RoT) establishes a trusted environment,…

Cryptography and Security · Computer Science 2026-01-19 Grazia D'Onghia , Antonio Lioy

As mobile phones have evolved into `smartphones', with complex operating systems running third- party software, they have become increasingly vulnerable to malicious applications (malware). We introduce a new design for mitigating malware…

Cryptography and Security · Computer Science 2014-01-30 Yossi Gilad , Amir Herzberg , Ari Trachtenberg

As an emerging technique for confidential computing, trusted execution environment (TEE) receives a lot of attention. To better develop, deploy, and run secure applications on a TEE platform such as Intel's SGX, both academic and industrial…

Cryptography and Security · Computer Science 2021-09-07 Weijie Liu , Hongbo Chen , XiaoFeng Wang , Zhi Li , Danfeng Zhang , Wenhao Wang , Haixu Tang

Smartphone owners often need to run security-critical programs on the same device as other untrusted and potentially malicious programs. This requires users to trust hardware and system software to correctly sandbox malicious programs,…

Cryptography and Security · Computer Science 2022-10-24 Zhihao Yao , Seyed Mohammadjavad Seyed Talebi , Mingyi Chen , Ardalan Amiri Sani , Thomas Anderson

Data hosted in a cloud environment can be subject to attacks from a higher privileged adversary, such as a malicious or compromised cloud provider. To provide confidentiality and integrity even in the presence of such an adversary, a number…

Cryptography and Security · Computer Science 2019-07-24 Mathias Morbitzer

Trusted Platform Modules constitute an integral building block of modern security features. Moreover, as Windows 11 made a TPM 2.0 mandatory, they are subject to an ever-increasing academic challenge. While discrete TPMs - as found in…

Cryptography and Security · Computer Science 2023-05-03 Hans Niklas Jacob , Christian Werling , Robert Buhren , Jean-Pierre Seifert

Attestation is a fundamental building block to establish trust over software systems. When used in conjunction with trusted execution environments, it guarantees the genuineness of the code executed against powerful attackers and threats,…

Cryptography and Security · Computer Science 2022-09-26 Jämes Ménétrey , Christian Göttel , Anum Khurshid , Marcelo Pasin , Pascal Felber , Valerio Schiavoni , Shahid Raza

The growing availability of hardware-based trusted execution environments (TEEs) in commodity processors has recently advanced support (i.e., design, implementation and deployment frameworks) for network-based secure services. Examples of…

Distributed, Parallel, and Cluster Computing · Computer Science 2019-12-24 Christian Göttel , Pascal Felber , Valerio Schiavoni

Embedded software is developed under the assumption that hardware execution is always correct. Fault attacks break and exploit that assumption. Through the careful introduction of targeted faults, an adversary modifies the control-flow or…

Cryptography and Security · Computer Science 2020-03-25 Bilgiday Yuce , Patrick Schaumont , Marc Witteman

Emerging crypto economies still hemorrhage digital assets because legacy wallets leak private keys at almost every layer of the software stack, from user-space libraries to kernel memory dumps. This paper solves that twin crisis of security…

Cryptography and Security · Computer Science 2025-06-24 Seongjin Kim , Sanguk Yun , Jungho Jang

A niche corner of the Web3 world is increasingly making use of hardware-based Trusted Execution Environments (TEEs) to build decentralized infrastructure. One of the motivations to use TEEs is to go beyond the current performance…

Cryptography and Security · Computer Science 2024-10-10 Sylvain Bellemare

We describe TrustBase, an architecture that provides certificate-based authentication as an operating system service. TrustBase enforces best practices for certificate validation for all applications and transparently enables existing…

Cryptography and Security · Computer Science 2016-10-28 Mark O'Neill , Scott Heidbrink , Jordan Whitehead , Scott Ruoti , Dan Bunker , Kent Seamons , Daniel Zappala

In this paper, we take a deep dive into microarchitectural security from a hardware designer's perspective by reviewing the existing approaches to detect hardware vulnerabilities during the design phase. We show that a protection gap…

Trusted Execution Environments (TEEs) such as ARM TrustZone are widely used in IoT and embedded devices to protect sensitive code and data. However, most existing defenses focus on secure boot or REE-side monitoring and provide little…

Cryptography and Security · Computer Science 2025-12-09 Jingkai Mao , Xiaolin Chang

New types of Trusted Execution Environment (TEE) architectures like TrustLite and Intel Software Guard Extensions (SGX) are emerging. They bring new features that can lead to innovative security and privacy solutions. But each new TEE…

Cryptography and Security · Computer Science 2015-07-01 Thomas Nyman , Brian McGillion , N. Asokan

Trusted execution environments (TEEs) provide an environment for running workloads in the cloud without having to trust cloud service providers, by offering additional hardware-assisted security guarantees. However, main memory encryption…

Cryptography and Security · Computer Science 2023-09-25 Jan Wichelmann , Anna Pätschke , Luca Wilke , Thomas Eisenbarth

Security is one of the main challenges of the Internet of Things (IoT). IoT devices are mainly powered by low-cost microcontrollers (MCUs) that typically lack basic hardware security mechanisms to separate security-critical applications…

Cryptography and Security · Computer Science 2022-02-17 Daniel Oliveira , Tiago Gomes , Sandro Pinto

High-assurance security systems require strong isolation from the untrusted world to protect the security-sensitive or privacy-sensitive data they process. Existing regulations impose that such systems must execute in a trustworthy…

Cryptography and Security · Computer Science 2022-05-13 Wojciech Ozga , Rasha Faqeh , Do Le Quoc , Franz Gregor , Silvio Dragone , Christof Fetzer

A TrustZone TEE often invokes an external filesystem. While filedata can be encrypted, the revealed file activities can leak secrets. To hide the file activities from the filesystem and its OS, we propose Enigma, a deception-based defense…

Cryptography and Security · Computer Science 2022-05-26 Liwei Guo , Kaiyang Zhao , Yiying Zhang , Felix Xiaozhu Lin