English
Related papers

Related papers: TME-Box: Scalable In-Process Isolation through Int…

200 papers

Embedded and Internet-of-Things (IoT) devices have seen an increase in adoption in many domains. The security of these devices is of great importance as they are often used to control critical infrastructure, medical devices, and vehicles.…

Cryptography and Security · Computer Science 2022-01-17 Alejandro Mera , Yi Hui Chen , Ruimin Sun , Engin Kirda , Long Lu

Machine learning has become a critical component of modern data-driven online services. Typically, the training phase of machine learning techniques requires to process large-scale datasets which may contain private and sensitive…

Cryptography and Security · Computer Science 2019-02-13 Roland Kunkel , Do Le Quoc , Franz Gregor , Sergei Arnautov , Pramod Bhatotia , Christof Fetzer

Cloud workloads combine software components from different parties to process sensitive data. Each component has its own trust model - it must protect its assets from the rest of the system, yet share sensitive data with components it…

Cryptography and Security · Computer Science 2026-05-22 Adrien Ghosn , Charly Castes , Neelu S. Kalani , Yuchen Qian , Marios Kogias , Edouard Bugnion

The widening availability of hardware-based trusted execution environments (TEEs) has been accelerating the adaptation of new applications using TEEs. Recent studies showed that a cloud application consists of multiple distributed software…

Cryptography and Security · Computer Science 2022-12-23 Joongun Park , Seunghyo Kang , Sanghyeon Lee , Taehoon Kim , Jongse Park , Youngjin Kwon , Jaehyuk Huh

In-storage computing with modern solid-state drives (SSDs) enables developers to offload programs from the host to the SSD. It has been proven to be an effective approach to alleviating the I/O bottleneck. To facilitate in-storage…

Cryptography and Security · Computer Science 2022-05-16 Yuqi Xue , Luyi Kang , Weiwei Jia , Xiaohao Wang , Jongryool Kim , Changhwan Youn , Myeong Joon Kang , Hyung Jin Lim , Bruce Jacob , Jian Huang

Trusted Execution Environments (TEEs), such as Intel Software Guard eXtensions (SGX), are considered as a promising approach to resolve security challenges in clouds. TEEs protect the confidentiality and integrity of application code and…

Cryptography and Security · Computer Science 2020-12-14 Robert Krahn , Donald Dragoti , Franz Gregor , Do Le Quoc , Valerio Schiavoni , Pascal Felber , Clenimar Souza , Andrey Brito , Christof Fetzer

The cloud computing landscape has evolved significantly in recent years, embracing various sandboxes to meet the diverse demands of modern cloud applications. These sandboxes encompass container-based technologies like Docker and gVisor,…

Cryptography and Security · Computer Science 2024-05-27 Debopriya Roy Dipta , Thore Tiemann , Berk Gulmezoglu , Eduard Marin , Thomas Eisenbarth

Transactional isolation guarantees are crucial for database correctness. However, recent studies have uncovered numerous isolation bugs in production databases. The common black-box approach to isolation checking stresses databases with…

Databases · Computer Science 2025-04-04 Hengfeng Wei , Jiang Xiao , Na Yang , Si Liu , Zijing Yin , Yuxing Chen , Anqun Pan

With the alarming rate of security advisories and privacy concerns on connected devices, there is an urgent need for strong isolation guarantees in resource-constrained devices that demand very lightweight solutions. However, the status quo…

Operating Systems · Computer Science 2020-04-13 Zahra Tarkhani , Anil Madhavapeddy

Trusted Execution Environments (TEEs) are a feature of modern central processing units (CPUs) that aim to provide a high assurance, isolated environment in which to run workloads that demand both confidentiality and integrity. Hardware and…

Cryptography and Security · Computer Science 2023-08-16 Arttu Paju , Muhammad Owais Javed , Juha Nurmi , Juha Savimäki , Brian McGillion , Billy Bob Brumley

Trusted-execution environments (TEE), like Intel SGX, isolate user-space applications into secure enclaves without trusting the OS. Thus, TEEs reduce the trusted computing base, but add one to two orders of magnitude slow-down. The…

Cryptography and Security · Computer Science 2020-10-19 Zhijingcheng Yu , Shweta Shinde , Trevor E. Carlson , Prateek Saxena

Microprocessors enable aggressive hardware virtualization by means of which multiple processes temporally execute on the system. These security-critical and ordinary processes interact with each other to assure application progress.…

Cryptography and Security · Computer Science 2020-01-28 Hamza Omar , Omer Khan

In this paper, we propose a new secure machine learning inference platform assisted by a small dedicated security processor, which will be easier to protect and deploy compared to today's TEEs integrated into high-performance processors.…

Cryptography and Security · Computer Science 2024-10-30 Pengzhi Huang , Thang Hoang , Yueying Li , Elaine Shi , G. Edward Suh

In large-scale distributed environments, avoiding concurrent access to the same resource by multiple processes becomes a core challenge, commonly termed distributed mutual exclusion (DME). Token-based mechanisms have long been recognized as…

Distributed, Parallel, and Cluster Computing · Computer Science 2025-02-10 Elahe Tohidi , Seyed Sattar Lotfi Fatemi

While it is compelling to process large streams of IoT data on the cloud edge, doing so exposes the data to a sophisticated, vulnerable software stack on the edge and hence security threats. To this end, we advocate isolating the data and…

Cryptography and Security · Computer Science 2019-06-07 Heejin Park , Shuang Zhai , Long Lu , Felix Xiaozhu Lin

Running off-site software middleboxes at third-party service providers has been a popular practice. However, routing large volumes of raw traffic, which may carry sensitive information, to a remote site for processing raises severe security…

Cryptography and Security · Computer Science 2019-10-17 Huayi Duan , Cong Wang , Xingliang Yuan , Yajin Zhou , Qian Wang , Kui Ren

Speculative execution techniques have been a cornerstone of modern processors to improve instruction-level parallelism. However, recent studies showed that this kind of techniques could be exploited by attackers to leak secret data via…

Cryptography and Security · Computer Science 2021-07-20 Bowen Tang , Chenggang Wu , Zhe Wang , Lichen Jia , Pen-Chung Yew , Yueqiang Cheng , Yinqian Zhang , Chenxi Wang , Guoqing Harry Xu

The endless stream of vulnerabilities urgently calls for principled mitigation to confine the effect of exploitation. However, the monolithic architecture of commodity OS kernels, like the Linux kernel, allows an attacker to compromise the…

Cryptography and Security · Computer Science 2024-09-17 Yinggang Guo , Zicheng Wang , Weiheng Bai , Qingkai Zeng , Kangjie Lu

Virtual Trusted Platform Modules (vTPMs) have been widely used in commercial cloud platforms (e.g. Google Cloud, VMware Cloud, and Microsoft Azure) to provide virtual root-of-trust for virtual machines. Unfortunately, current…

Cryptography and Security · Computer Science 2019-05-22 Juan Wang , Chengyang Fan , Jie Wang , Yueqiang Cheng , Yinqian Zhang , Wenhui Zhang , Peng Liu , Hongxin Hu

In this work we present the Secure Machine, SeM for short, a CPU architecture extension for secure computing. SeM uses a small amount of in-chip additional hardware that monitors key communication channels inside the CPU chip, and only acts…

Cryptography and Security · Computer Science 2018-03-13 Ofir Shwartz , Yitzhak Birk