English
Related papers

Related papers: SGX-LKL: Securing the Host OS Interface for Truste…

200 papers

Trusted execution environments (TEEs) protect the integrity and confidentiality of running code and its associated data. Nevertheless, TEEs' integrity protection does not extend to the state saved on disk. Furthermore, modern cloud-native…

Cryptography and Security · Computer Science 2024-08-16 Ardhi Putra Pratama Hartono , Andrey Brito , Christof Fetzer

Hardware-assisted trusted execution environments (TEEs) are critical building blocks of many modern applications. However, they have a one-way isolation model that introduces a semantic gap between a TEE and its outside world. This lack of…

Cryptography and Security · Computer Science 2020-11-24 Zahra Tarkhani , Anil Madhavapeddy

This paper presents Unikernel Linux (UKL), a path toward integrating unikernel optimization techniques in Linux, a general purpose operating system. UKL adds a configuration option to Linux allowing for a single, optimized process to link…

Because FPGAs outperform traditional processing cores like CPUs and GPUs in terms of performance per watt and flexibility, they are being used more and more in cloud and data center applications. There are growing worries about the security…

Cryptography and Security · Computer Science 2022-09-26 Muhammed Kawser Ahmed , Sujan Kumar Saha , Christophe Bobda

Differential privacy offers a formal privacy guarantee for individuals, but many deployments of differentially private systems require a trusted third party (the data curator). We propose DuetSGX, a system that uses secure hardware (Intel's…

Cryptography and Security · Computer Science 2020-10-22 Phillip Nguyen , Alex Silence , David Darais , Joseph P. Near

We present \texttt{secml}, an open-source Python library for secure and explainable machine learning. It implements the most popular attacks against machine learning, including test-time evasion attacks to generate adversarial examples…

Machine Learning · Computer Science 2022-05-16 Maura Pintor , Luca Demetrio , Angelo Sotgiu , Marco Melis , Ambra Demontis , Battista Biggio

We present the SecureCloud EU Horizon 2020 project, whose goal is to enable new big data applications that use sensitive data in the cloud without compromising data security and privacy. For this, SecureCloud designs and develops a layered…

Distributed, Parallel, and Cluster Computing · Computer Science 2018-05-07 Florian Kelbert , Franz Gregor , Rafael Pires , Stefan Köpsell , Marcelo Pasin , Aurélien Havet , Valerio Schiavoni , Pascal Felber , Christof Fetzer , Peter Pietzuch

We present a new least-privilege-based model of addressing on which to base memory management functionality in an OS for modern computers like phones or server-based accelerators. Existing software assumptions do not account for…

Operating Systems · Computer Science 2019-08-26 Reto Achermann , Nora Hossle , Lukas Humbel , Daniel Schwyn , David Cock , Timothy Roscoe

TLS is an end-to-end protocol designed to provide confidentiality and integrity guarantees that improve end-user security and privacy. While TLS helps defend against pervasive surveillance of intercepted unencrypted traffic, it also hinders…

Cryptography and Security · Computer Science 2023-01-26 Xavier de Carné de Carnavalet , Paul C. van Oorschot

Control-flow leakage (CFL) attacks enable an attacker to expose control-flow decisions of a victim program via side-channel observations. Linearization (i.e., elimination) of secret-dependent control flow is the main countermeasure against…

Cryptography and Security · Computer Science 2025-02-12 Hans Winderix , Marton Bognar , Lesly-Ann Daniel , Frank Piessens

Confidential Computing (CC) has received increasing attention in recent years as a mechanism to protect user data from untrusted operating systems (OSes). Existing CC solutions hide confidential memory from the OS and/or encrypt it to…

Cryptography and Security · Computer Science 2024-12-06 Caihua Li , Seung-seob Lee , Lin Zhong

With the improvements in computing technologies, edge devices in the Internet-of-Things have become more complex. The enabler technology for these complex systems are powerful application core processors with operating system support, such…

Cryptography and Security · Computer Science 2023-01-13 Robert Schilling , Pascal Nasahl , Martin Unterguggenberger , Stefan Mangard

We propose a federated Function-as-a-Service (FaaS) execution model that provides secure and stateful execution in both Cloud and Edge environments. The FaaS workers, called Paranoid Stateful Lambdas (PSLs), collaborate with one another to…

Encrypted databases have been studied for more than 10 years and are quickly emerging as a critical technology for the cloud. The current state of the art is to use property-preserving encrypting techniques (e.g., deterministic encryption)…

Dynamic partial reconfiguration enables multi-tenancy in cloud-based FPGAs, which presents security challenges for tenants, IPs, and data. Malicious users can exploit FPGAs for remote side-channel attacks (SCAs), and shared on-chip…

Cryptography and Security · Computer Science 2023-03-14 Mahya Morid Ahmadi , Faiq Khalid , Radha Vaidya , Florian Kriebel , Andreas Steininger , Muhammad Shafique

Data-driven intelligent applications in modern online services have become ubiquitous. These applications are usually hosted in the untrusted cloud computing infrastructure. This poses significant security risks since these applications…

Cryptography and Security · Computer Science 2021-01-21 Do Le Quoc , Franz Gregor , Sergei Arnautov , Roland Kunkel , Pramod Bhatotia , Christof Fetzer

Running LLMs on end devices has garnered significant attention recently due to their advantages in privacy preservation. With the advent of lightweight LLM models and specially designed GPUs, on-device LLM inference has achieved the…

Cryptography and Security · Computer Science 2024-09-09 Huan Yang , Deyu Zhang , Yudong Zhao , Yuanchun Li , Yunxin Liu

Micro-architectural attacks use information leaked through shared resources to break hardware-enforced isolation. These attacks have been used to steal private information ranging from cryptographic keys to privileged Operating System (OS)…

Cryptography and Security · Computer Science 2021-09-21 Nikhilesh Singh , Chester Rebeiro

The security of applications hinges on the trustworthiness of the operating system, as applications rely on the OS to protect code and data. As a result, multiple protections for safeguarding the integrity of kernel code and data are being…

Cryptography and Security · Computer Science 2019-05-16 Salessawi Ferede Yitbarek , Todd Austin

This paper presents PUBSUB-SGX, a content-based publish-subscribe system that exploits trusted execution environments (TEEs), such as Intel SGX, to guarantee confidentiality and integrity of data as well as anonymity and privacy of…

Distributed, Parallel, and Cluster Computing · Computer Science 2019-02-27 Sergei Arnautov , Andrey Brito , Pascal Felber , Christof Fetzer , Franz Gregor , Robert Krahn , Wojciech Ozga , André Martin , Valerio Schiavoni , Fábio Silva , Marcus Tenorio , Nikolaus Thümmel