English
Related papers

Related papers: Binary Compatibility For SGX Enclaves

200 papers

The big data industry is facing new challenges as concerns about privacy leakage soar. One of the remedies to privacy breach incidents is to encapsulate computations over sensitive data within hardware-assisted Trusted Execution…

Software Engineering · Computer Science 2020-05-12 Pei Wang , Yu Ding , Mingshen Sun , Huibo Wang , Tongxin Li , Rundong Zhou , Zhaofeng Chen , Yiming Jing

A number of trusted execution environments (TEEs) have been proposed by both academia and industry. However, most of them require specific hardware or firmware changes and are bound to specific hardware vendors (such as Intel, AMD, ARM, and…

Cryptography and Security · Computer Science 2022-12-09 Yuekai Jia , Shuang Liu , Wenhao Wang , Yu Chen , Zhengde Zhai , Shoumeng Yan , Zhengyu He

Trusted executions environments (TEEs) such as Intel(R) SGX provide hardware-isolated execution areas in memory, called enclaves. By running only the most trusted application components in the enclave, TEEs enable developers to minimize the…

Cryptography and Security · Computer Science 2020-06-19 Marcela S. Melara , Michael J. Freedman , Mic Bowman

Intel SGX Guard eXtensions (SGX), a hardware-supported trusted execution environment (TEE), is designed to protect security-sensitive applications. However, since enclave applications are developed with memory unsafe languages such as…

Cryptography and Security · Computer Science 2020-05-14 Huibo Wang , Mingshen Sun , Qian Feng , Pei Wang , Tongxin Li , Yu Ding

Hardware-enclaves that target complex CPU designs compromise both security and performance. Programs have little control over micro-architecture, which leads to side-channel leaks, and then have to be transformed to have worst-case control-…

Cryptography and Security · Computer Science 2020-07-16 Sarbartha Banerjee , Prakash Ramrakhyani , Shijia Wei , Mohit Tiwari

This paper presents SgxPectre Attacks that exploit the recently disclosed CPU bugs to subvert the confidentiality and integrity of SGX enclaves. Particularly, we show that when branch prediction of the enclave code can be influenced by…

Cryptography and Security · Computer Science 2019-09-12 Guoxing Chen , Sanchuan Chen , Yuan Xiao , Yinqian Zhang , Zhiqiang Lin , Ten H. Lai

User programs recover from hardware exceptions and respond to signals by executing custom handlers that they register specifically for such events. We present SIGY attack, which abuses this programming model on Intel SGX to break the…

Cryptography and Security · Computer Science 2024-04-23 Supraja Sridhara , Andrin Bertschi , Benedict Schlüter , Shweta Shinde

Intel SGX (Software Guard Extension) is a promising TEE (trusted execution environment) technique that can protect programs running in user space from being maliciously accessed by the host operating system. Although it provides hardware…

Cryptography and Security · Computer Science 2022-08-24 Yang Chen , Jianfeng Jiang , Shoumeng Yan , Hui Xu

Trusted execution environments (TEEs) such as \intelsgx facilitate the secure execution of an application on untrusted machines. Sadly, such environments suffer from serious limitations and performance overheads in terms of writing back…

Cryptography and Security · Computer Science 2022-05-16 Sandeep Kumar , Abhisek Panda , Smruti R. Sarangi

Content-based routing (CBR) is a powerful model that supports scalable asynchronous communication among large sets of geographically distributed nodes. Yet, preserving privacy represents a major limitation for the wide adoption of CBR,…

Distributed, Parallel, and Cluster Computing · Computer Science 2017-01-18 Rafael Pires , Marcelo Pasin , Pascal Felber , Christof Fetzer

Integrity is critical for maintaining system security, as it ensures that only genuine software is loaded onto a machine. Although confidential virtual machines (CVMs) function within isolated environments separate from the host, it is…

Cryptography and Security · Computer Science 2024-10-25 Wenhao Wang , Linke Song , Benshan Mei , Shuang Liu , Shijun Zhao , Shoumeng Yan , XiaoFeng Wang , Dan Meng , Rui Hou

Intel's software guard extensions (SGX) provide hardware enclaves to guarantee confidentiality and integrity for sensitive code and data. However, systems leveraging such security mechanisms must often pay high performance overheads. A…

Cryptography and Security · Computer Science 2023-07-10 Peterson Yuhala , Michael Paper , Timothée Zerbib , Pascal Felber , Valerio Schiavoni , Alain Tchana

Trusted-execution environments (TEE), like Intel SGX, isolate user-space applications into secure enclaves without trusting the OS. Thus, TEEs reduce the trusted computing base, but add one to two orders of magnitude slow-down. The…

Cryptography and Security · Computer Science 2020-10-19 Zhijingcheng Yu , Shweta Shinde , Trevor E. Carlson , Prateek Saxena

Intel SGX enables memory isolation and static integrity verification of code and data stored in user-space memory regions called enclaves. SGX effectively shields the execution of enclaves from the underlying untrusted OS. Attackers cannot…

Cryptography and Security · Computer Science 2022-06-16 Flavio Toffalini , Mathias Payer , Jianying Zhou , Lorenzo Cavallaro

Existing tools to detect side-channel attacks on Intel SGX are grounded on the observation that attacks affect the performance of the victim application. As such, all detection tools monitor the potential victim and raise an alarm if the…

Cryptography and Security · Computer Science 2022-07-01 Jianyu Jiang , Claudio Soriente , Ghassan Karame

In modern computer systems, user processes are isolated from each other by the operating system and the hardware. Additionally, in a cloud scenario it is crucial that the hypervisor isolates tenants from other tenants that are co-located on…

Cryptography and Security · Computer Science 2019-05-23 Michael Schwarz , Samuel Weiser , Daniel Gruss , Clémentine Maurice , Stefan Mangard

With the proliferation of Trusted Execution Environments (TEEs) such as Intel SGX, a number of cloud providers will soon introduce TEE capabilities within their offering (e.g., Microsoft Azure). Although the integration of SGX within the…

Cryptography and Security · Computer Science 2018-09-14 Claudio Soriente , Ghassan Karame , Wenting Li , Sergey Fedorov

Security and privacy concerns in computer systems have grown in importance with the ubiquity of connected devices. TEEs provide security guarantees based on cryptographic constructs built in hardware. Intel software guard extensions (SGX),…

Cryptography and Security · Computer Science 2020-03-12 Rafael Pereira Pires

WebAssembly is an increasingly popular lightweight binary instruction format, which can be efficiently embedded and sandboxed. Languages like C, C++, Rust, Go, and many others can be compiled into WebAssembly. This paper describes Twine, a…

Cryptography and Security · Computer Science 2021-09-02 Jämes Ménétrey , Marcelo Pasin , Pascal Felber , Valerio Schiavoni

Intel Software Guard Extensions (SGX) enables user-level code to create private memory regions called enclaves, whose code and data are protected by the CPU from software and hardware attacks outside the enclaves. Recent work introduces…

Operating Systems · Computer Science 2020-01-22 Youren Shen , Hongliang Tian , Yu Chen , Kang Chen , Runji Wang , Yi Xu , Yubin Xia