English
Related papers

Related papers: TME-Box: Scalable In-Process Isolation through Int…

200 papers

With the continuous increase in the number of software-based attacks, there has been a growing effort towards isolating sensitive data and trusted software components from untrusted third-party components. A hardware-assisted intra-process…

Cryptography and Security · Computer Science 2020-12-07 Leila Delshadtehrani , Sadullah Canakci , Manuel Egele , Ajay Joshi

In the quest for efficiency and performance, edge-computing providers eliminate isolation boundaries between tenants, such as strict process isolation, and instead let them compute in a more lightweight multi-threaded single-process design.…

Cryptography and Security · Computer Science 2021-10-12 Martin Schwarzl , Pietro Borrello , Andreas Kogler , Kenton Varda , Thomas Schuster , Daniel Gruss , Michael Schwarz

As an emerging technique for confidential computing, trusted execution environment (TEE) receives a lot of attention. To better develop, deploy, and run secure applications on a TEE platform such as Intel's SGX, both academic and industrial…

Cryptography and Security · Computer Science 2021-09-07 Weijie Liu , Hongbo Chen , XiaoFeng Wang , Zhi Li , Danfeng Zhang , Wenhao Wang , Haixu Tang

While there exist many isolation mechanisms that are available to cloud service providers, including virtual machines, containers, etc., the problem of side-channel increases in importance as a remaining security vulnerability, particularly…

Cryptography and Security · Computer Science 2017-09-01 Read Sprabery , Konstantin Evchenko , Abhilash Raj , Rakesh B. Bobba , Sibin Mohan , Roy H. Campbell

The kernels of operating systems such as Windows, Linux, and MacOS are vulnerable to control-flow hijacking. Defenses exist, but many require efficient intra-address-space isolation. Execute-only memory, for example, requires read…

Cryptography and Security · Computer Science 2021-08-04 Spyridoula Gravani , Mohammad Hedayati , John Criswell , Michael L. Scott

Isolating sensitive state and data can increase the security and robustness of many applications. Examples include protecting cryptographic keys against exploits like OpenSSL's Heartbleed bug or protecting a language runtime from native…

Cryptography and Security · Computer Science 2019-06-05 Anjo Vahldiek-Oberwagner , Eslam Elnikety , Nuno O. Duarte , Michael Sammler , Peter Druschel , Deepak Garg

The growth of cloud computing has revolutionized data processing and storage capacities to another levels of scalability and flexibility. But in the process, it has created a huge challenge of security, especially in terms of safeguarding…

Cryptography and Security · Computer Science 2025-11-07 Dhruv Deepak Agarwal , Aswani Kumar Cherukuri

Confidential container is becoming increasingly popular as it meets both needs for efficient resource management by cloud providers, and data protection by cloud users. Specifically, confidential containers integrate the container and the…

Cryptography and Security · Computer Science 2024-11-19 Chulmin Lee , Jaewon Hur , Sangho Lee , Byoungyoung Lee

Cloud computing has emerged as a corner stone of today's computing landscape. More and more customers who outsource their infrastructure benefit from the manageability, scalability and cost saving that come with cloud computing. Those…

Cryptography and Security · Computer Science 2022-05-13 Ferdinand Brasser , Patrick Jauernig , Frederik Pustelnik , Ahmad-Reza Sadeghi , Emmanuel Stapf

Computer systems often provide hardware support for isolation mechanisms like privilege levels, virtual memory, or enclaved execution. Over the past years, several successful software-based side-channel attacks have been developed that…

Cryptography and Security · Computer Science 2020-01-30 Matteo Busi , Job Noorman , Jo Van Bulck , Letterio Galletta , Pierpaolo Degano , Jan Tobias Mühlberg , Frank Piessens

In-process compartmentalization and access control have been actively explored to provide in-place and efficient isolation of in-process security domains. Many works have proposed compartmentalization schemes that leverage hardware…

Cryptography and Security · Computer Science 2023-09-21 Kha Dinh Duy , Kyuwon Cho , Taehyun Noh , Hojoon Lee

Trusted execution environments (TEEs) are an integral part of modern secure processors. They ensure that their application and code pages are confidential, tamper proof and immune to diverse types of attacks. In 2021, Intel suddenly…

Cryptography and Security · Computer Science 2024-07-19 Ani Sunny , Nivedita Shrivastava , Smruti R. Sarangi

Shared cache resources in multi-core processors are vulnerable to cache side-channel attacks. Recently proposed defenses have their own caveats: Randomization-based defenses are vulnerable to the evolving attack algorithms besides relying…

Cryptography and Security · Computer Science 2021-10-18 Ghada Dessouky , Alexander Gruler , Pouya Mahmoody , Ahmad-Reza Sadeghi , Emmanuel Stapf

Secure Multi-Party Computation (MPC) offers a practical foundation for privacy-preserving machine learning at the edge, with MPC commonly employed to support nonlinear operations. These MPC protocols fundamentally rely on Oblivious Transfer…

Cryptography and Security · Computer Science 2025-08-26 Zhuoran Li , Hanieh Totonchi Asl , Ebrahim Nouri , Yifei Cai , Danella Zhao

In-storage computing with modern solid-state drives (SSDs) enables developers to offload programs from the host to the SSD. It has been proven to be an effective approach to alleviate the I/O bottleneck. To facilitate in-storage computing,…

Hardware Architecture · Computer Science 2021-09-09 Luyi Kang , Yuqi Xue , Weiwei Jia , Xiaohao Wang , Jongryool Kim , Changhwan Youn , Myeong Joon Kang , Hyung Jin Lim , Bruce Jacob , Jian Huang

Cloud computing offers the economies of scale for computational resources with the ease of management, elasticity, and fault tolerance. To take advantage of these benefits, many enterprises are contemplating to outsource the middlebox…

Cryptography and Security · Computer Science 2019-10-18 Bohdan Trach , Alfred Krohmer , Sergei Arnautov , Franz Gregor , Pramod Bhatotia , Christof Fetzer

Memory Protection Keys for Userspace (PKU) is a recent hardware feature that allows programs to assign virtual memory pages to protection domains, and to change domain access permissions using inexpensive, unprivileged instructions. Several…

Cryptography and Security · Computer Science 2021-10-12 Alexios Voulimeneas , Jonas Vinck , Ruben Mechelinck , Stijn Volckaert

Over the last years, security kernels have played a promising role in reshaping the landscape of platform security on today's ubiquitous embedded devices. Security kernels, such as separation kernels, enable constructing high-assurance…

Cryptography and Security · Computer Science 2020-05-07 Hamed Nemati

Trusted executions environments (TEEs) such as Intel(R) SGX provide hardware-isolated execution areas in memory, called enclaves. By running only the most trusted application components in the enclave, TEEs enable developers to minimize the…

Cryptography and Security · Computer Science 2020-06-19 Marcela S. Melara , Michael J. Freedman , Mic Bowman

Cloud stacks must isolate application components, while permitting efficient data sharing between components deployed on the same physical host. Traditionally, the MMU enforces isolation and permits sharing at page granularity. MMU…

Operating Systems · Computer Science 2022-06-27 Vasily A. Sartakov , Lluís Vilanova , David Eyers , Takahiro Shinagawa , Peter Pietzuch
‹ Prev 1 2 3 10 Next ›