English
Related papers

Related papers: Extracting Secrets from Encrypted Virtual Machines

200 papers

Confidential computing safeguards sensitive computations from untrusted clouds, with Confidential Virtual Machines (CVMs) providing a secure environment for guest OS. However, CVMs often come with large and vulnerable operating system…

Cryptography and Security · Computer Science 2024-07-19 Benshan Mei , Saisai Xia , Wenhao Wang , Dongdai Lin

This paper shows how an attacker can break the confidentiality of a hardware enclave with Membuster, an off-chip attack based on snooping the memory bus. An attacker with physical access can observe an unencrypted address bus and extract…

Cryptography and Security · Computer Science 2019-12-05 Dayeol Lee , Dongha Jung , Ian T. Fang , Chia-Che Tsai , Raluca Ada Popa

The ever increasing popularity and availability of Trusted Execution Environments (TEEs) had a stark influence on microarchitectural attack research in academia, as their strong attacker model both boosts existing attack vectors and…

Cryptography and Security · Computer Science 2023-07-28 Luca Wilke , Jan Wichelmann , Anja Rabich , Thomas Eisenbarth

Multi- and many-core processors are becoming increasingly popular in embedded systems. Many of these processors now feature hardware virtualization capabilities, such as the ARM Cortex A15, and x86 processors with Intel VT-x or AMD-V…

Operating Systems · Computer Science 2013-10-24 Ye Li , Richard West , Eric Missimer

Modern confidential computing executes sensitive computation in an abstraction called confidential VMs and protects from the hypervisor, host OS, and other co-resident VMs. It has been shown that an attacker can inject malicious interrupts…

To provide data and code confidentiality and reduce the risk of information leak from memory or memory bus, computing systems are enhanced with encryption and decryption engine. Despite massive efforts in designing hardware enhancements for…

Cryptography and Security · Computer Science 2022-08-17 Jingyao Zhang , Hoda Naghibijouybari , Elaheh Sadredini

Decrypting and inspecting encrypted malicious communications may assist crime detection and prevention. Access to client or server memory enables the discovery of artefacts required for decrypting secure communications. This paper develops…

Cryptography and Security · Computer Science 2019-07-26 Peter McLaren , Gordon Russell , William J. Buchanan , Zhiyuan Tan

With wide spread acceptance of virtualization, virtual machines (VMs) find their presence in various applications such as Network Address Translation (NAT) servers, firewall servers and MapReduce applications. Typically, in these…

Operating Systems · Computer Science 2019-09-27 Shesha Sreenivasamurthy , Ethan Miller

Cryptographic algorithm implementations are vulnerable to Cold Boot attacks, which consist in exploiting the persistence of RAM cells across reboots or power down cycles to read the memory contents and recover precious sensitive data. The…

Cryptography and Security · Computer Science 2020-04-21 Pierpaolo Santucci , Emiliano Ingrassia , Giulio Picierro , Marco Cesati

Searchable encryption (SE) is one of the key enablers for building encrypted databases. It allows a cloud server to search over encrypted data without decryption. Dynamic SE additionally includes data addition and deletion operations to…

Cryptography and Security · Computer Science 2020-04-13 Viet Vo , Shangqi Lai , Xingliang Yuan , Shi-Feng Sun , Surya Nepal , Joseph K. Liu

While NLP models significantly impact our lives, there are rising concerns about privacy invasion. Although federated learning enhances privacy, attackers may recover private training data by exploiting model parameters and gradients.…

Artificial Intelligence · Computer Science 2024-10-23 Mengjiao Zhang , Jia Xu

Existing anti-malware software and reverse engineering toolkits struggle with stealthy sub-OS rootkits due to limitations of run-time kernel-level monitoring. A malicious kernel-level driver can bypass OS-level anti-virus mechanisms easily.…

In the official whitepaper of Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP), AMD explicitly emphasizes the capability to prevent Trusted Computing Base (TCB) rollback attacks. Cryptographically, this is realized by…

Cryptography and Security · Computer Science 2026-05-14 Muyan Shen , Yu Qin

Deep learning (DL) accelerators are increasingly deployed on edge devices to support fast local inferences. However, they suffer from a new security problem, i.e., being vulnerable to physical access based attacks. An adversary can easily…

Hardware Architecture · Computer Science 2020-08-11 Pengfei Zuo , Yu Hua , Ling Liang , Xinfeng Xie , Xing Hu , Yuan Xie

One of the main issues in the OS security is providing trusted code execution in an untrusted environment. During executing, kernel-mode drivers dynamically allocate memory to store and process their data: Windows core kernel structures,…

Cryptography and Security · Computer Science 2018-05-31 Igor Korkin

Cloud computing is a ubiquitous solution to handle today's complex computing demands. However, it comes with data privacy concerns, as the cloud service provider has complete access to code and data running on their infrastructure. VM-based…

Cryptography and Security · Computer Science 2024-06-04 Luca Wilke , Gianluca Scopelliti

The Virtual Machine (VM)-based Trusted-Execution-Environment (TEE) technology, like AMD Secure-Encrypted-Virtualization (SEV), enables the establishment of Confidential VMs (CVMs) to protect data privacy. But CVM lacks ways to provide the…

Cryptography and Security · Computer Science 2024-05-03 Jingkai Mao , Haoran Zhu , Junchao Fan , Lin Li , Xiaolin Chang

Hypervisors are under threat by critical memory safety vulnerabilities, with pointer corruption being one of the most prevalent and severe forms. Existing exploitation frameworks depend on identifying highly-constrained structures in the…

Cryptography and Security · Computer Science 2025-12-30 Gaoning Pan , Yiming Tao , Qinying Wang , Chunming Wu , Mingde Hu , Yizhi Ren , Shouling Ji

Virtual memory is an essential mechanism for enforcing security boundaries, but its relaxed-memory concurrency semantics has not previously been investigated in detail. The concurrent systems code managing virtual memory has been left on an…

Hardware Architecture · Computer Science 2022-03-02 Ben Simner , Alasdair Armstrong , Jean Pichon-Pharabod , Christopher Pulte , Richard Grisenthwaite , Peter Sewell

Hardware virtualization technologies play a significant role in cyber security. On the one hand these technologies enhance security levels, by designing a trusted operating system. On the other hand these technologies can be taken up into…

Cryptography and Security · Computer Science 2015-06-15 Igor Korkin