English
Related papers

Related papers: SEV-Step: A Single-Stepping Framework for AMD-SEV

200 papers

AMD Secure Encrypted Virtualization (SEV) offers protection mechanisms for virtual machines in untrusted environments through memory and register encryption. To separate security-sensitive operations from software executing on the main x86…

Cryptography and Security · Computer Science 2021-08-27 Robert Buhren , Hans Niklas Jacob , Thilo Krachenfels , Jean-Pierre Seifert

Hardware-enclaves that target complex CPU designs compromise both security and performance. Programs have little control over micro-architecture, which leads to side-channel leaks, and then have to be transformed to have worst-case control-…

Cryptography and Security · Computer Science 2020-07-16 Sarbartha Banerjee , Prakash Ramrakhyani , Shijia Wei , Mohit Tiwari

Integrity is critical for maintaining system security, as it ensures that only genuine software is loaded onto a machine. Although confidential virtual machines (CVMs) function within isolated environments separate from the host, it is…

Cryptography and Security · Computer Science 2024-10-25 Wenhao Wang , Linke Song , Benshan Mei , Shuang Liu , Shijun Zhao , Shoumeng Yan , XiaoFeng Wang , Dan Meng , Rui Hou

Trusted execution environments (TEEs) are an integral part of modern secure processors. They ensure that their application and code pages are confidential, tamper proof and immune to diverse types of attacks. In 2021, Intel suddenly…

Cryptography and Security · Computer Science 2024-07-19 Ani Sunny , Nivedita Shrivastava , Smruti R. Sarangi

Hardware-based Trusted execution environments (TEEs) offer an isolation granularity of virtual machine abstraction. They provide confidential VMs (CVMs) that host security-sensitive code and data. AMD SEV-SNP and Intel TDX enable CVMs and…

Cryptography and Security · Computer Science 2024-04-05 Benedict Schlüter , Supraja Sridhara , Mark Kuhne , Andrin Bertschi , Shweta Shinde

Customers of cloud services have to trust the cloud providers, as they control the building blocks that form the cloud. This includes the hypervisor enabling the sharing of a single hardware platform among multiple tenants. AMD Secure…

Cryptography and Security · Computer Science 2019-09-04 Robert Buhren , Christian Werling , Jean-Pierre Seifert

Intel SGX is known to be vulnerable to a class of practical attacks exploiting memory access pattern side-channels, notably page-fault attacks and cache timing attacks. A promising hardening scheme is to wrap applications in hardware…

Cryptography and Security · Computer Science 2022-12-29 Yuzhe Tang , Kai Li , Yibo Wang , Jiaqi Chen , Cheng Xu

The ongoing trend of moving data and computation to the cloud is met with concerns regarding privacy and protection of intellectual property. Cloud Service Providers (CSP) must be fully trusted to not tamper with or disclose processed data,…

Cryptography and Security · Computer Science 2021-07-14 Luca Wilke , Jan Wichelmann , Florian Sieck , Thomas Eisenbarth

Existing tools to detect side-channel attacks on Intel SGX are grounded on the observation that attacks affect the performance of the victim application. As such, all detection tools monitor the potential victim and raise an alarm if the…

Cryptography and Security · Computer Science 2022-07-01 Jianyu Jiang , Claudio Soriente , Ghassan Karame

In modern computing environments, hardware resources are commonly shared, and parallel computation is widely used. Parallel tasks can cause privacy and security problems if proper isolation is not enforced. Intel proposed SGX to create a…

Cryptography and Security · Computer Science 2017-08-22 Ahmad Moghimi , Gorka Irazoqui , Thomas Eisenbarth

The adversarial model presented by trusted execution environments (TEEs) has prompted researchers to investigate unusual attack vectors. One particularly powerful class of controlled-channel attacks abuses page-table modifications to…

Cryptography and Security · Computer Science 2020-06-29 Daniel Moghimi , Jo Van Bulck , Nadia Heninger , Frank Piessens , Berk Sunar

Cloud computing has become indispensable in today's computer landscape. The flexibility it offers for customers as well as for providers has become a crucial factor for large parts of the computer industry. Virtualization is the key…

Cryptography and Security · Computer Science 2017-07-27 Felicitas Hetzelt , Robert Buhren

A number of trusted execution environments (TEEs) have been proposed by both academia and industry. However, most of them require specific hardware or firmware changes and are bound to specific hardware vendors (such as Intel, AMD, ARM, and…

Cryptography and Security · Computer Science 2022-12-09 Yuekai Jia , Shuang Liu , Wenhao Wang , Yu Chen , Zhengde Zhai , Shoumeng Yan , Zhengyu He

Modern processors can offer hardware primitives that allow a process to run in isolation. These primitives implement a trusted execution environment (TEE) in which a program can run such that the integrity and confidentiality of its…

Cryptography and Security · Computer Science 2021-05-14 Pedro Antonino , Wojciech Aleksander Wołoszyn , A. W. Roscoe

AMD SEV is a hardware extension for main memory encryption on multi-tenant systems. SEV uses an on-chip coprocessor, the AMD Secure Processor, to transparently encrypt virtual machine memory with individual, ephemeral keys never leaving the…

Cryptography and Security · Computer Science 2019-01-08 Mathias Morbitzer , Manuel Huber , Julian Horsch

Intel's Software Guard Extensions (SGX) introduced new instructions to switch the processor to enclave mode which protects it from introspection. While the enclave mode strongly protects the memory and the state of the processor, it cannot…

Cryptography and Security · Computer Science 2020-07-17 Tobias Cloosters , Michael Rodler , Lucas Davi

Cloud computing is a ubiquitous solution to handle today's complex computing demands. However, it comes with data privacy concerns, as the cloud service provider has complete access to code and data running on their infrastructure. VM-based…

Cryptography and Security · Computer Science 2024-06-04 Luca Wilke , Gianluca Scopelliti

Cloud computing is a convenient model for processing data remotely. However, users must trust their cloud provider with the confidentiality and integrity of the stored and processed data. To increase the protection of virtual machines, AMD…

Cryptography and Security · Computer Science 2020-10-15 Martin Radev , Mathias Morbitzer

Intel has introduced a trusted computing technology, Intel Software Guard Extension (SGX), which provides an isolated and secure execution environment called enclave for a user program without trusting any privilege software (e.g., an…

Cryptography and Security · Computer Science 2018-11-14 Jinwen Wang , Yueqiang Cheng , Qi Li , Yong Jiang

To mitigate interrupt-based stepping attacks (notably using SGX-Step), Intel introduced AEX-Notify, an ISA extension to Intel SGX that aims to prevent deterministic single-stepping. In this work, we introduce AEX-NStep, the first interrupt…

Cryptography and Security · Computer Science 2025-10-17 Nicolas Dutly , Friederike Groschupp , Ivan Puddu , Kari Kostiainen , Srdjan Capkun
‹ Prev 1 2 3 10 Next ›