English
Related papers

Related papers: SGX-LKL: Securing the Host OS Interface for Truste…

200 papers

Hardware enclaves such as Intel SGX are a promising technology for improving the security of databases outsourced to the cloud. These enclaves provide an execution environment isolated from the hypervisor/OS, and encrypt data in RAM.…

Cryptography and Security · Computer Science 2019-09-20 Saba Eskandarian , Matei Zaharia

In this paper we propose a data dissemination platform that supports data security and different privacy levels even when the platform and the data are hosted by untrusted infrastructures. The proposed system aims at enabling an application…

Distributed, Parallel, and Cluster Computing · Computer Science 2018-03-05 Lilia Sampaio , Fábio Silva , Amanda Souza , Andrey Brito , Pascal Felber

Confidential computing on GPUs, like NVIDIA H100, mitigates the security risks of outsourced Large Language Models (LLMs) by implementing strong isolation and data encryption. Nonetheless, this encryption incurs a significant performance…

Cryptography and Security · Computer Science 2024-11-07 Yifan Tan , Cheng Tan , Zeyu Mi , Haibo Chen

Hardware-based Trusted Execution Environments (TEEs) are becoming increasingly prevalent in cloud computing, forming the basis for confidential computing. However, the security goals of TEEs sometimes conflict with existing cloud…

Cryptography and Security · Computer Science 2022-06-01 Yoshimichi Nakatsuka , Ercan Ozturk , Alex Shamis , Andrew Paverd , Peter Pietzuch

Recent research has demonstrated that Intel's SGX is vulnerable to software-based side-channel attacks. In a common attack, the adversary monitors CPU caches to infer secret-dependent data accesses patterns. Known defenses have major…

Cryptography and Security · Computer Science 2019-12-13 Ferdinand Brasser , Srdjan Capkun , Alexandra Dmitrienko , Tommaso Frassetto , Kari Kostiainen , Ahmad-Reza Sadeghi

Trusted computing defines how to securely measure, store, and verify the integrity of software controlling a computer. One of the major challenges that make them hard to be applied in practice is the issue with software updates.…

Cryptography and Security · Computer Science 2021-01-06 Wojciech Ozga , Do Le Quoc , Christof Fetzer

Trusted Execution Environments (TEEs) have been proposed as a solution to protect code confidentiality in scenarios where computation is outsourced to an untrusted operator. We study the resilience of such solutions to side-channel attacks…

Cryptography and Security · Computer Science 2022-12-16 Ivan Puddu , Moritz Schneider , Daniele Lain , Stefano Boschetto , Srdjan Čapkun

In recent years, we have witnessed unprecedented growth in using hardware-assisted Trusted Execution Environments (TEE) or enclaves to protect sensitive code and data on commodity devices thanks to new hardware security features, such as…

Cryptography and Security · Computer Science 2024-05-14 Md Armanuzzaman , Ahmad-Reza Sadeghi , Ziming Zhao

A lease is an important primitive for building distributed protocols, and it is ubiquitously employed in distributed systems. However, the scope of the classic lease abstraction is restricted to the trusted computing infrastructure.…

Distributed, Parallel, and Cluster Computing · Computer Science 2021-01-19 Bohdan Trach , Rasha Faqeh , Oleksii Oleksenko , Wojciech Ozga , Pramod Bhatotia , Christof Fetzer

With the evolution of computer systems, the amount of sensitive data to be stored as well as the number of threats on these data grow up, making the data confidentiality increasingly important to computer users. Currently, with devices…

Platforms are nowadays typically equipped with tristed execution environments (TEES), such as Intel SGX and ARM TrustZone. However, recent microarchitectural attacks on TEEs repeatedly broke their confidentiality guarantees, including the…

Cryptography and Security · Computer Science 2023-06-07 Dhiman Chakraborty , Michael Schwarz , Sven Bugiel

Address translation and protection play important roles in today's processors, supporting multiprocessing and enforcing security. Historically, the design of the address translation mechanisms has been closely tied to the instruction set.…

Hardware Architecture · Computer Science 2019-05-17 Xuan Guo , Robert Mullins

In this paper, we explore a new, yet critical, side-channel attack against Intel Software Guard Extension (SGX), called a branch shadowing attack, which can reveal fine-grained control flows (i.e., each branch) of an enclave program running…

Cryptography and Security · Computer Science 2017-06-05 Sangho Lee , Ming-Wei Shih , Prasun Gera , Taesoo Kim , Hyesoon Kim , Marcus Peinado

Trusted Execution Environments (TEEs) are used to protect sensitive data and run secure execution for security-critical applications, by providing an environment isolated from the rest of the system. However, over the last few years, TEEs…

Cryptography and Security · Computer Science 2021-07-09 Sérgio Pereira , David Cerdeira , Cristiano Rodrigues , Sandro Pinto

Fault-injection attacks have been proven in the past to be a reliable way of bypassing hardware-based security measures, such as cryptographic hashes, privilege and access permission enforcement, and trusted execution environments. However,…

Cryptography and Security · Computer Science 2019-12-11 Zijo Kenjar , Tommaso Frassetto , David Gens , Michael Franz , Ahmad-Reza Sadeghi

Protected user-level libraries have been proposed as a way to allow mutually distrusting applications to safely share kernel-bypass services. In this paper, we identify and solve several previously unaddressed obstacles to realizing this…

Operating Systems · Computer Science 2025-09-04 Alan Beadle , Michael L. Scott , John Criswell

WebAssembly is an increasingly popular lightweight binary instruction format, which can be efficiently embedded and sandboxed. Languages like C, C++, Rust, Go, and many others can be compiled into WebAssembly. This paper describes Twine, a…

Cryptography and Security · Computer Science 2021-09-02 Jämes Ménétrey , Marcelo Pasin , Pascal Felber , Valerio Schiavoni

Cloud platforms are widely adopted by many systems, such as time series processing systems, to store and process massive amounts of sensitive time series data. Unfortunately, several incidents have shown that cloud platforms are vulnerable…

Cryptography and Security · Computer Science 2023-06-30 K. Bagher , S. Cui , X. Yuan , C. Rudolph , X. Yi

The growing adoption of IoT devices in our daily life is engendering a data deluge, mostly private information that needs careful maintenance and secure storage system to ensure data integrity and protection. Also, the prodigious IoT…

Cryptography and Security · Computer Science 2020-08-13 Md Shihabul Islam , Mustafa Safa Ozdayi , Latifur Khan , Murat Kantarcioglu

Low-trust architectures work on, from the viewpoint of software, always-encrypted data, and significantly reduce the amount of hardware trust to a small software-free enclave component. In this paper, we perform a complete formal…

Hardware Architecture · Computer Science 2023-09-04 Qinhan Tan , Yonathan Fisseha , Shibo Chen , Lauren Biernacki , Jean-Baptiste Jeannin , Sharad Malik , Todd Austin