English
Related papers

Related papers: Cipherfix: Mitigating Ciphertext Side-Channel Atta…

200 papers

Timing side-channel attacks exploit secret-dependent execution time to fully or partially recover secrets of cryptographic implementations, posing a severe threat to software security. Constant-time programming discipline is an effective…

Cryptography and Security · Computer Science 2024-02-22 Luwei Cai , Fu Song , Taolue Chen

Trusted Execution Environments (TEEs), such as Intel SGX and ARM TrustZone, provide isolated regions of CPU and memory for secure computation and are increasingly used to protect sensitive data and code across diverse application domains.…

Software Engineering · Computer Science 2026-01-21 Yuqing Niu , Jieke Shi , Ruidong Han , Ye Liu , Chengyan Ma , Yunbo Lyu , David Lo

Confidential Virtual Machines (CVMs) protect data in use by running workloads within hardware-enforced Trusted Execution Environments (TEEs). However, existing CVM attestation mechanisms only certify what code is running, not where it is…

Cryptography and Security · Computer Science 2026-03-05 Filip Rezabek , Moe Mahhouk , Andrew Miller , Quintus Kilbourn , Georg Carle , Jonathan Passerat-Palmbach

Process attestation systems verify that a continuous physical process, such as human authorship, actually occurred, rather than merely checking system state. These systems face a fundamental dependability challenge: the evidence collection…

Cryptography and Security · Computer Science 2026-05-26 David Condrey

Transient Execution Attacks (TEAs) have gradually become a major security threat to modern high-performance processors. They exploit the vulnerability of speculative execution to illegally access private data, and transmit them through…

Cryptography and Security · Computer Science 2023-04-18 Bowen Tang , Chenggang Wu , Pen-Chung Yew , Yinqian Zhang , Mengyao Xie , Yuanming Lai , Yan Kang , Wei Wang , Qiang Wei , Zhe Wang

Confidential computing is a security paradigm that enables the protection of confidential code and data in a co-tenanted cloud deployment using specialized hardware isolation units called Trusted Execution Environments (TEEs). By…

Cryptography and Security · Computer Science 2024-01-18 Abhiroop Sarkar , Alejandro Russo

Confidential virtual machines (CVMs) based on trusted execution environments (TEEs) enable new privacy-preserving solutions. Yet, they leave side-channel leakage outside their threat model, shifting the responsibility of mitigating such…

Cryptography and Security · Computer Science 2025-12-15 Ruiyi Zhang , Albert Cheu , Adria Gascon , Daniel Moghimi , Phillipp Schoppmann , Michael Schwarz , Octavian Suciu

To ensure secure and trustworthy execution of applications, vendors frequently embed trusted execution environments into their systems. Here, applications are protected from adversaries, including a malicious operating system. TEEs are…

Cryptography and Security · Computer Science 2021-03-10 Pascal Nasahl , Robert Schilling , Mario Werner , Stefan Mangard

Applications running in Trusted Execution Environments (TEEs) commonly use untrusted external services such as host File System. Adversaries may maliciously alter the normal service behavior to trigger subtle application bugs that would…

Cryptography and Security · Computer Science 2022-11-15 Meni Orenbach , Bar Raveh , Alon Berkenstadt , Yan Michalevsky , Shachar Itzhaky , Mark Silberstein

The majority of cloud providers offers users the possibility to deploy Trusted Execution Environments (TEEs) to protect their data and processes from high privileged adversaries. This offer is intended to address concerns of users when…

Cryptography and Security · Computer Science 2022-05-09 Mathias Morbitzer , Benedikt Kopf , Philipp Zieris

A niche corner of the Web3 world is increasingly making use of hardware-based Trusted Execution Environments (TEEs) to build decentralized infrastructure. One of the motivations to use TEEs is to go beyond the current performance…

Cryptography and Security · Computer Science 2024-10-10 Sylvain Bellemare

Side-channel attacks have become a severe threat to the confidentiality of computer applications and systems. One popular type of such attacks is the microarchitectural attack, where the adversary exploits the hardware features to break the…

Cryptography and Security · Computer Science 2021-03-29 Xiaoxuan Lou , Tianwei Zhang , Jun Jiang , Yinqian Zhang

As an emerging technique for confidential computing, trusted execution environment (TEE) receives a lot of attention. To better develop, deploy, and run secure applications on a TEE platform such as Intel's SGX, both academic and industrial…

Cryptography and Security · Computer Science 2021-09-07 Weijie Liu , Hongbo Chen , XiaoFeng Wang , Zhi Li , Danfeng Zhang , Wenhao Wang , Haixu Tang

Cloud file systems offer organizations a scalable and reliable file storage solution. However, cloud file systems have become prime targets for adversaries, and traditional designs are not equipped to protect organizations against the…

Cryptography and Security · Computer Science 2024-10-04 Quinn Burke , Yohan Beugin , Blaine Hoak , Rachel King , Eric Pauley , Ryan Sheatsley , Mingli Yu , Ting He , Thomas La Porta , Patrick McDaniel

Trusted execution environment (TEE) technology has found many applications in mitigating various security risks in an efficient manner, which is attractive for critical infrastructure protection. First, the natural of critical…

Cryptography and Security · Computer Science 2023-09-14 Rabimba Karanjai , Rowan Collier , Zhimin Gao , Lin Chen , Xinxin Fan , Taeweon Suh , Weidong Shi , Lei Xu

Users can improve the security of remote communications by using Trusted Execution Environments (TEEs) to protect against direct introspection and tampering of sensitive data. This can even be done with applications coded in high-level…

Cryptography and Security · Computer Science 2021-02-11 Hyun Bin Lee , Tushar M. Jois , Christopher W. Fletcher , Carl A. Gunter

Security and privacy concerns in computer systems have grown in importance with the ubiquity of connected devices. TEEs provide security guarantees based on cryptographic constructs built in hardware. Intel software guard extensions (SGX),…

Cryptography and Security · Computer Science 2020-03-12 Rafael Pereira Pires

Today, machine learning is widely applied in sensitive, security-related, and financially lucrative applications. Model extraction attacks undermine current business models where a model owner sells model access, e.g., via MLaaS APIs.…

Cryptography and Security · Computer Science 2026-04-22 Jonas Sander , Anja Rabich , Nick Mahling , Felix Maurer , Jonah Heller , Qifan Wang , Thomas Eisenbarth , David Oswald

We systematize software side-channel attacks with a focus on vulnerabilities and countermeasures in the cryptographic implementations. Particularly, we survey past research literature to categorize vulnerable implementations, and identify…

Cryptography and Security · Computer Science 2019-12-13 Tianwei Zhang , Jun Jiang , Yinqian Zhang

Besides cryptographic secrets, side-channel attacks also leak sensitive user input. The most accurate attacks exploit cache timings or interrupt information to monitor keystroke timings and subsequently infer typed words and sentences.…

Cryptography and Security · Computer Science 2017-06-21 Michael Schwarz , Moritz Lipp , Daniel Gruss , Samuel Weiser , Clémentine Maurice , Raphael Spreitzer , Stefan Mangard