English
Related papers

Related papers: Capstone: A Capability-based Foundation for Trustl…

200 papers

Confidential Computing (CC) has received increasing attention in recent years as a mechanism to protect user data from untrusted operating systems (OSes). Existing CC solutions hide confidential memory from the OS and/or encrypt it to…

Cryptography and Security · Computer Science 2024-12-06 Caihua Li , Seung-seob Lee , Lin Zhong

This paper presents an octree construction method, called Cornerstone, that facilitates global domain decomposition and interactions between particles in mesh-free numerical simulations. Our method is based on algorithms developed for 3D…

Instrumentation and Methods for Astrophysics · Physics 2023-07-14 Sebastian Keller , Aurélien Cavelan , Rubén Cabezon , Lucio Mayer , Florina M. Ciorba

We introduce Capsule, a mechanism for seamlessly sharing datacenter resources across multiple players. It decouples player-local and global states to achieve isolation and to maximize cross-player sharing. Our evaluations show that Capsule…

Distributed, Parallel, and Cluster Computing · Computer Science 2026-05-29 Zhouheng Du , Nima Davari , Li Li , Wei Sen Loi , Nodir Kodirov

Trusted-execution environments (TEE), like Intel SGX, isolate user-space applications into secure enclaves without trusting the OS. Thus, TEEs reduce the trusted computing base, but add one to two orders of magnitude slow-down. The…

Cryptography and Security · Computer Science 2020-10-19 Zhijingcheng Yu , Shweta Shinde , Trevor E. Carlson , Prateek Saxena

As an emerging technique for confidential computing, trusted execution environment (TEE) receives a lot of attention. To better develop, deploy, and run secure applications on a TEE platform such as Intel's SGX, both academic and industrial…

Cryptography and Security · Computer Science 2021-09-07 Weijie Liu , Hongbo Chen , XiaoFeng Wang , Zhi Li , Danfeng Zhang , Wenhao Wang , Haixu Tang

A key feature in trusted computing is attestation, which allows encapsulated components (enclaves) to prove their identity to (local or remote) distrusting components. Reasoning about software that uses the technique requires tracking how…

Programming Languages · Computer Science 2026-04-17 June Rousseau , Denis Carnier , Thomas Van Strydonck , Steven Keuchel , Dominique Devriese , Lars Birkedal

Transient execution side-channel attacks, such as Spectre, have been shown to break almost all isolation primitives. We introduce a new security property we call relaxed microarchitectural isolation (RMI) that allows sensitive programs that…

Cryptography and Security · Computer Science 2025-02-10 Jules Drean , Miguel Gomez-Garcia , Fisher Jepsen , Thomas Bourgeat , Srinivas Devadas

Presentation Attack Detection (PAD) systems are usually designed independently of the fingerprint verification system. While this can be acceptable for use cases where specific user templates are not predetermined, it represents a missed…

Computer Vision and Pattern Recognition · Computer Science 2025-04-16 Marco Micheletto , Giulia Orrù , Luca Ghiani , Gian Luca Marcialis

Applications written in low-level languages without type or memory safety are especially prone to memory corruption. Attackers gain code execution capabilities through such applications despite all currently deployed defenses by exploiting…

Cryptography and Security · Computer Science 2014-07-03 Mathias Payer , Antonio Barresi , Thomas R. Gross

Interior unsafe is an essential design paradigm advocated by the Rust community in system software development. However, there is little official guidance or few best practices regarding how to encapsulate unsafe code and achieve interior…

Software Engineering · Computer Science 2024-06-13 Zihao Rao , Yiran Yang , Hui Xu

Embedded systems play a crucial role in fueling the growth of the Internet-of-Things (IoT) in application domains such as healthcare, home automation, transportation, etc. However, their increasingly network-connected nature, coupled with…

Cryptography and Security · Computer Science 2017-12-06 Soubhagya Sutar , Arnab Raha , Vijay Raghunathan

Modern operating systems (OSes) have unfettered access to application data, assuming that applications trust them. This assumption, however, is problematic under many scenarios where either the OS provider is not trustworthy or the OS can…

Operating Systems · Computer Science 2022-12-27 Caihua Li , Seung-seob Lee , Min Hong Yun , Lin Zhong

The assumption of maximum parallelism support for the successful realization of scalable quantum computers has led to homogeneous, ``sea-of-qubits'' architectures. The resulting architectures overcome the primary challenges of reliability…

In this dissertation, we propose a memory and computing coordinated methodology to thoroughly exploit the characteristics and capabilities of the GPU-based heterogeneous system to effectively optimize applications' performance and privacy.…

Cryptography and Security · Computer Science 2022-09-07 Zhendong Wang , Yang Hu

Confidential containers protect cloud-native workloads using trusted execution environments (TEEs). However, existing Container-in-TEE designs (e.g., Confidential Containers (CoCo)) encapsulate the entire runtime within the TEE, inflating…

Cryptography and Security · Computer Science 2026-01-06 Di Lu , Mengna Sun , Qingwen Zhang , Yujia Liu , Jia Zhang , Xuewen Dong , Yulong Shen , Jianfeng Ma

Artificial intelligence and machine learning have significantly advanced malware research by enabling automated threat detection and behavior analysis. However, the availability of exploitable data is limited, due to the absence of large…

Cryptography and Security · Computer Science 2026-01-13 Valentin Leroy , Shuvalaxmi Dass , Sharif Ullah

Web3 applications require execution platforms that maintain confidentiality and integrity without relying on centralized trust authorities. While Trusted Execution Environments (TEEs) offer promising capabilities for confidential computing,…

Cryptography and Security · Computer Science 2025-09-16 Shunfan Zhou , Kevin Wang , Hang Yin

We propose embedding executable code fragments in cryptographically protected capabilities to enable flexible discretionary access control in cloud-like computing infrastructures. We are developing this as part of a sports analytics…

Cryptography and Security · Computer Science 2012-10-22 Robbert van Renesse , Håvard Johansen , Nihar Naigaonkar , Dag Johansen

Real-time embedded platforms with resource constraints can take the benefits of mixed-criticality system where applications with different criticality-level share computational resources, with isolation in the temporal and spatial domain. A…

Systems and Control · Electrical Eng. & Systems 2022-08-31 Shibarchi Majumder , Jens Frederik Dalsgaard Nielsen , Thomas Bak

Covert channels can be utilized to secretly deliver information from high privileged processes to low privileged processes in the context of a high-assurance computing system. In this case study, we investigate the possibility of covert…

Cryptography and Security · Computer Science 2015-08-24 Wolfgang Schmidt , Michael Hanspach , Jörg Keller