English
Related papers

Related papers: SEVered: Subverting AMD's Virtual Machine Encrypti…

200 papers

Cloud computing is a new model of computing which provides scalability, flexibility and on-demand service. Virtualization is one of the main components of the cloud, but unfortunately, this technology suffers from many security…

Cryptography and Security · Computer Science 2018-09-17 Zakaria El Mrabet , Hamid El Ghazi , Tayeb Sadiki , Hassan El Ghazi

Confidential computing safeguards sensitive computations from untrusted clouds, with Confidential Virtual Machines (CVMs) providing a secure environment for guest OS. However, CVMs often come with large and vulnerable operating system…

Cryptography and Security · Computer Science 2024-07-19 Benshan Mei , Saisai Xia , Wenhao Wang , Dongdai Lin

Adversaries with physical access to a target platform can perform cold boot or DMA attacks to extract sensitive data from the RAM. In response, several main-memory encryption schemes have been proposed to prevent such attacks. Also hardware…

Cryptography and Security · Computer Science 2016-12-13 Robert Buhren , Shay Gueron , Jan Nordholz , Jean-Pierre Seifert , Julian Vetter

One of the main issues in the OS security is providing trusted code execution in an untrusted environment. During executing, kernel-mode drivers dynamically allocate memory to store and process their data: Windows core kernel structures,…

Cryptography and Security · Computer Science 2018-05-31 Igor Korkin

Virtualization plays an essential role in providing security to computational systems by isolating execution environments. Many software solutions, called hypervisors, have been proposed to provide virtualization capabilities. However, only…

Cryptography and Security · Computer Science 2022-12-29 Everton de Matos , Markku Ahvenjärvi

Multi- and many-core processors are becoming increasingly popular in embedded systems. Many of these processors now feature hardware virtualization capabilities, such as the ARM Cortex A15, and x86 processors with Intel VT-x or AMD-V…

Operating Systems · Computer Science 2013-10-24 Ye Li , Richard West , Eric Missimer

In the official whitepaper of Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP), AMD explicitly emphasizes the capability to prevent Trusted Computing Base (TCB) rollback attacks. Cryptographically, this is realized by…

Cryptography and Security · Computer Science 2026-05-14 Muyan Shen , Yu Qin

Trust is of paramount concern for tenants to deploy their security-sensitive services in the cloud. The integrity of VMs in which these services are deployed needs to be ensured even in the presence of powerful adversaries with…

Cryptography and Security · Computer Science 2021-07-07 Wojciech Ozga , Do Le Quoc , Christof Fetzer

Cloud computing is a ubiquitous solution to handle today's complex computing demands. However, it comes with data privacy concerns, as the cloud service provider has complete access to code and data running on their infrastructure. VM-based…

Cryptography and Security · Computer Science 2024-06-04 Luca Wilke , Gianluca Scopelliti

Over the last years, security kernels have played a promising role in reshaping the landscape of platform security on today's ubiquitous embedded devices. Security kernels, such as separation kernels, enable constructing high-assurance…

Cryptography and Security · Computer Science 2020-05-07 Hamed Nemati

Integrity is critical for maintaining system security, as it ensures that only genuine software is loaded onto a machine. Although confidential virtual machines (CVMs) function within isolated environments separate from the host, it is…

Cryptography and Security · Computer Science 2024-10-25 Wenhao Wang , Linke Song , Benshan Mei , Shuang Liu , Shijun Zhao , Shoumeng Yan , XiaoFeng Wang , Dan Meng , Rui Hou

Nested virtualization is now widely supported by major cloud vendors, allowing users to leverage virtualization-based technologies in the cloud. However, supporting nested virtualization significantly increases host hypervisor complexity…

Operating Systems · Computer Science 2025-12-10 Reima Ishii , Takaaki Fukai , Takahiro Shinagawa

Cryptographic algorithm implementations are vulnerable to Cold Boot attacks, which consist in exploiting the persistence of RAM cells across reboots or power down cycles to read the memory contents and recover precious sensitive data. The…

Cryptography and Security · Computer Science 2020-04-21 Pierpaolo Santucci , Emiliano Ingrassia , Giulio Picierro , Marco Cesati

With wide spread acceptance of virtualization, virtual machines (VMs) find their presence in various applications such as Network Address Translation (NAT) servers, firewall servers and MapReduce applications. Typically, in these…

Operating Systems · Computer Science 2019-09-27 Shesha Sreenivasamurthy , Ethan Miller

During the last years, large-scale simulations of realistic physical environments which support the interaction of multiple participants over the Internet have become increasingly available and economically significant, most notably in the…

Cryptography and Security · Computer Science 2009-09-29 Uwe Hermann , Stefan Katzenbeisser , Christian Schallhart , Helmut Veith

Trying to address the security challenges of a cloud-centric software deployment paradigm, silicon and cloud vendors are introducing confidential computing - an umbrella term aimed at providing hardware and software mechanisms for…

Cloud computing relies on secure and efficient virtualization. Software level security solutions compromise the performance of virtual machines (VMs), as a large amount of computational power would be utilized for running the security…

Hardware Architecture · Computer Science 2018-05-11 Jithin R , Priya Chandran

The ever increasing popularity and availability of Trusted Execution Environments (TEEs) had a stark influence on microarchitectural attack research in academia, as their strong attacker model both boosts existing attack vectors and…

Cryptography and Security · Computer Science 2023-07-28 Luca Wilke , Jan Wichelmann , Anja Rabich , Thomas Eisenbarth

Today's mainstream virtualization systems comprise of two cooperative components: a kernel-resident driver that accesses virtualization hardware and a user-level helper process that provides VM management and I/O virtualization. However,…

Operating Systems · Computer Science 2022-01-25 Jiahao Chen , Dingji Li , Zeyu Mi , Yuxuan Liu , Binyu Zang , Haibing Guan , Haibo Chen

Most existing solutions for protecting VMs assume known attack patterns or signatures and focus on detecting malicious manipulations of system files and kernel level memory structures. In this research we develop a system called ferify,…

Cryptography and Security · Computer Science 2020-04-21 Alexis Peppas , Geoffrey G. Xie , Charles Prince