English
Related papers

Related papers: SGX-LKL: Securing the Host OS Interface for Truste…

200 papers

As an emerging technique for confidential computing, trusted execution environment (TEE) receives a lot of attention. To better develop, deploy, and run secure applications on a TEE platform such as Intel's SGX, both academic and industrial…

Cryptography and Security · Computer Science 2021-09-07 Weijie Liu , Hongbo Chen , XiaoFeng Wang , Zhi Li , Danfeng Zhang , Wenhao Wang , Haixu Tang

Trusted Execution Environments (TEEs) are hardware-enforced memory isolation units, emerging as a pivotal security solution for security-critical applications. TEEs, like Intel SGX and ARM TrustZone, allow the isolation of confidential code…

Programming Languages · Computer Science 2023-07-26 Abhiroop Sarkar , Robert Krook , Alejandro Russo , Koen Claessen

Enclaves, such as those enabled by Intel SGX, offer a powerful hardware isolation primitive for application partitioning. To become universally usable on future commodity OSes, enclave designs should offer compatibility with existing…

Cryptography and Security · Computer Science 2020-09-03 Shweta Shinde , Jinhua Cui , Satyaki Sen , Pinghai Yuan , Prateek Saxena

Encrypted database systems provide a great method for protecting sensitive data in untrusted infrastructures. These systems are built using either special-purpose cryptographic algorithms that support operations over encrypted data, or by…

Cryptography and Security · Computer Science 2019-04-23 Alexey Gribov , Dhinakaran Vinayagamurthy , Sergey Gorbunov

Memory disaggregation via CXL enables multi-host resource sharing. However, existing CXL sharing mechanisms enforce coarse-grained, host-level permissions only, leaving isolation to the operating system. Today, virtual memory enables…

Hardware Architecture · Computer Science 2026-05-29 Kaustav Goswami , Sean Peisert , Venkatesh Akella , Jason Lowe-Power

The growth of cloud computing has revolutionized data processing and storage capacities to another levels of scalability and flexibility. But in the process, it has created a huge challenge of security, especially in terms of safeguarding…

Cryptography and Security · Computer Science 2025-11-07 Dhruv Deepak Agarwal , Aswani Kumar Cherukuri

Trusted Execution Environments (TEEs) allow user processes to create enclaves that protect security-sensitive computation against access from the OS kernel and the hypervisor. Recent work has shown that TEEs are vulnerable to side-channel…

Cryptography and Security · Computer Science 2023-12-20 Shujie Cui , Haohua Li , Yuanhong Li , Zhi Zhang , Lluís Vilanova , Peter Pietzuch

Authenticated data storage on an untrusted platform is an important computing paradigm for cloud applications ranging from big-data outsourcing, to cryptocurrency and certificate transparency log. These modern applications increasingly…

Cryptography and Security · Computer Science 2019-11-11 Yuzhe Tang , Ju Chen , Kai Li , Jianliang Xu , Qi Zhang

A smart contract on a blockchain cannot keep a secret because its data is replicated on all nodes in a network. To remedy this problem, it has been suggested to combine blockchains with trusted execution environments (TEEs), such as Intel…

Distributed, Parallel, and Cluster Computing · Computer Science 2018-05-23 Marcus Brandenburger , Christian Cachin , Rüdiger Kapitza , Alessandro Sorniotti

Side-channel information leakage is a known limitation of SGX. Researchers have demonstrated that secret-dependent information can be extracted from enclave execution through page-fault access patterns. Consequently, various recent research…

Cryptography and Security · Computer Science 2017-02-27 Ferdinand Brasser , Urs Müller , Alexandra Dmitrienko , Kari Kostiainen , Srdjan Capkun , Ahmad-Reza Sadeghi

Hypertext Transfer Protocol Secure (HTTPS) protocol has become an integral part of modern Internet technology. Currently, it is the primary protocol for commercialized web applications. It can provide a fast, secure connection with a…

Cryptography and Security · Computer Science 2022-09-28 Gordon King , Hans Wang

We introduce a new timing side-channel attack on Intel CPU processors. Our Frontal attack exploits timing differences that arise from how the CPU frontend fetches and processes instructions while being interrupted. In particular, we observe…

Cryptography and Security · Computer Science 2021-06-08 Ivan Puddu , Moritz Schneider , Miro Haller , Srdjan Čapkun

Intel Software Guard Extensions (SGX) is a promising hardware-based technology for protecting sensitive computations from potentially compromised system software. However, recent research has shown that SGX is vulnerable to branch-shadowing…

Cryptography and Security · Computer Science 2018-10-04 Shohreh Hosseinzadeh , Hans Liljestrand , Ville Leppänen , Andrew Paverd

We present a practical framework to deploy privacy-preserving machine learning (PPML) applications in untrusted clouds based on a trusted execution environment (TEE). Specifically, we shield unmodified PyTorch ML applications by running…

Cryptography and Security · Computer Science 2020-09-10 Dayeol Lee , Dmitrii Kuvaiskii , Anjo Vahldiek-Oberwagner , Mona Vij

Stream processing systems are important in modern applications in which data arrive continuously and need to be processed in real time. Because of their resource and scalability requirements, many of these systems run on the cloud, which is…

Cryptography and Security · Computer Science 2025-10-16 Hung Pham , Viet Vo , Tien Tuan Anh Dinh , Duc Tran , Shuhao Zhang

Trusted Execution Environments (TEEs) have emerged as a cornerstone for securing sensitive computations by providing isolated enclaves protected from untrusted software. However, their security guarantees are undermined by vulnerabilities…

Cryptography and Security · Computer Science 2026-05-07 Saltanat Firdous Allaqband , Deepanjali S , Rohit Srinivas R G , Devashish Gosain , Chester Rebeiro

Intel(R) Software Guard eXtensions (SGX) is a hardware-based technology for ensuring security of sensitive data from disclosure or modification that enables user-level applications to allocate protected areas of memory called enclaves. Such…

Cryptography and Security · Computer Science 2017-11-01 Rodolfo Silva , Pedro Barbosa , Andrey Brito

Mitigating memory-access attacks on the Intel SGX architecture is an important and open research problem. A natural notion of the mitigation is cache-miss obliviousness which requires the cache-misses emitted during an enclave execution are…

Cryptography and Security · Computer Science 2017-11-15 Ju Chen , Yuzhe Tang , Hao Zhou

Trusted-execution environments (TEE), like Intel SGX, isolate user-space applications into secure enclaves without trusting the OS. Thus, TEEs reduce the trusted computing base, but add one to two orders of magnitude slow-down. The…

Cryptography and Security · Computer Science 2020-10-19 Zhijingcheng Yu , Shweta Shinde , Trevor E. Carlson , Prateek Saxena

The kernels of operating systems such as Windows, Linux, and MacOS are vulnerable to control-flow hijacking. Defenses exist, but many require efficient intra-address-space isolation. Execute-only memory, for example, requires read…

Cryptography and Security · Computer Science 2021-08-04 Spyridoula Gravani , Mohammad Hedayati , John Criswell , Michael L. Scott