English
Related papers

Related papers: Aster: Fixing the Android TEE Ecosystem with Arm C…

200 papers

Confidential containers protect cloud-native workloads using trusted execution environments (TEEs). However, existing Container-in-TEE designs (e.g., Confidential Containers (CoCo)) encapsulate the entire runtime within the TEE, inflating…

Cryptography and Security · Computer Science 2026-01-06 Di Lu , Mengna Sun , Qingwen Zhang , Yujia Liu , Jia Zhang , Xuewen Dong , Yulong Shen , Jianfeng Ma

Confidential Virtual Machines (CVMs) provide isolation guarantees for data in use, but their threat model does not include physical level protection and side-channel attacks. Therefore, current deployments rely on trusted cloud providers to…

Cryptography and Security · Computer Science 2025-06-19 Filip Rezabek , Jonathan Passerat-Palmbach , Moe Mahhouk , Frieder Erdmann , Andrew Miller

Trusted Execution Environments (TEEs), such as Intel SGX and ARM TrustZone, provide isolated regions of CPU and memory for secure computation and are increasingly used to protect sensitive data and code across diverse application domains.…

Software Engineering · Computer Science 2026-01-21 Yuqing Niu , Jieke Shi , Ruidong Han , Ye Liu , Chengyan Ma , Yunbo Lyu , David Lo

Mobile devices rely on Trusted Execution Environments (TEEs) to execute security-critical code and protect sensitive assets. This security-critical code is modularized in components known as Trusted Applications (TAs). Vulnerabilities in…

Cryptography and Security · Computer Science 2026-01-29 Philipp Mao , Li Shi , Marcel Busch , Mathias Payer

Confidential Computing has emerged to address data security challenges in cloud-centric deployments by protecting data in use through hardware-level isolation. However, reliance on a single hardware root of trust (RoT) limits user…

Cryptography and Security · Computer Science 2024-12-13 Ketong Shang , Jiangnan Lin , Yu Qin , Muyan Shen , Hongzhan Ma , Wei Feng , Dengguo Feng

Confidential Virtual Machines (CVMs) protect data in use by running workloads within hardware-enforced Trusted Execution Environments (TEEs). However, existing CVM attestation mechanisms only certify what code is running, not where it is…

Cryptography and Security · Computer Science 2026-03-05 Filip Rezabek , Moe Mahhouk , Andrew Miller , Quintus Kilbourn , Georg Carle , Jonathan Passerat-Palmbach

To ensure secure and trustworthy execution of applications, vendors frequently embed trusted execution environments into their systems. Here, applications are protected from adversaries, including a malicious operating system. TEEs are…

Cryptography and Security · Computer Science 2021-03-10 Pascal Nasahl , Robert Schilling , Mario Werner , Stefan Mangard

Large Language Models (LLMs) deployed on mobile devices offer benefits like user privacy and reduced network latency, but introduce a significant security risk: the leakage of proprietary models to end users. To mitigate this risk, we…

Cryptography and Security · Computer Science 2025-11-18 Xunjie Wang , Jiacheng Shi , Zihan Zhao , Yang Yu , Zhichao Hua , Jinyu Gu

Modern operating systems such as Android, iOS, Windows Phone, and Chrome OS support a cooperating program abstraction. Instead of placing all functionality into a single program, programs cooperate to complete tasks requested by users.…

Cryptography and Security · Computer Science 2018-08-17 Giuseppe Petracca , Jens Grossklags , Patrick McDaniel , Trent Jaeger

Trusted Execution Environments (TEEs) protect sensitive code and data from the operating system, hypervisor, or other untrusted software. Different solutions exist, each proposing different features. Abstraction layers aim to unify the…

Cryptography and Security · Computer Science 2025-12-29 Quentin Michaud , Sara Ramezanian , Dhouha Ayed , Olivier Levillain , Joaquin Garcia-Alfaro

Hardware-assisted trusted execution environments (TEEs) are critical building blocks of many modern applications. However, they have a one-way isolation model that introduces a semantic gap between a TEE and its outside world. This lack of…

Cryptography and Security · Computer Science 2020-11-24 Zahra Tarkhani , Anil Madhavapeddy

Confidential Virtual Machines (CVMs) are increasingly adopted to protect sensitive workloads from privileged adversaries such as the hypervisor. While they provide strong isolation guarantees, existing CVM architectures lack first-class…

Cryptography and Security · Computer Science 2026-05-07 Sina Abdollahi , Amir Al Sadi , David Kotz , Marios Kogias , Hamed Haddadi

ARM TrustZone is widely deployed on commercial-off-the-shelf mobile devices for secure execution. However, many Apps cannot enjoy this feature because it brings many constraints to App developers. Previous works have been proposed to build…

Cryptography and Security · Computer Science 2022-11-24 Lizhi Sun , Shuocheng Wang , Hao Wu , Yuhang Gong , Fengyuan Xu , Yunxin Liu , Hao Han , Sheng Zhong

Android is the most widely deployed end-user focused operating system. With its growing set of use cases encompassing communication, navigation, media consumption, entertainment, finance, health, and access to sensors, actuators, cameras,…

Trusted execution environments in several existing and upcoming CPUs demonstrate the success of confidential computing, with the caveat that tenants cannot securely use accelerators such as GPUs and FPGAs. In this paper, we reconsider the…

Cryptography and Security · Computer Science 2023-10-26 Supraja Sridhara , Andrin Bertschi , Benedict Schlüter , Mark Kuhne , Fabio Aliberti , Shweta Shinde

Trusted Execution Environments (TEEs) are rapidly emerging as a root-of-trust for protecting sensitive applications and data using hardware-backed isolated worlds of execution. TEEs provide robust assurances regarding critical algorithm…

Cryptography and Security · Computer Science 2018-11-27 Carlton Shepherd , Raja N. Akram , Konstantinos Markantonakis

Hardware-based Trusted Execution Environments (TEEs) are widely deployed in mobile devices. Yet their use has been limited primarily to applications developed by the device vendors. Recent standardization of TEE interfaces by GlobalPlatform…

Cryptography and Security · Computer Science 2016-11-17 Brian McGillion , Tanel Dettenborn , Thomas Nyman , N. Asokan

Trusted execution environments (TEEs) are being used in all the devices from embedded sensors to cloud servers and encompass a range of cost, power constraints, and security threat model choices. On the other hand, each of the current…

Cryptography and Security · Computer Science 2019-09-10 Dayeol Lee , David Kohlbrenner , Shweta Shinde , Dawn Song , Krste Asanović

WebAssembly (Wasm) is a novel low-level bytecode format that swiftly gained popularity for its efficiency, versatility and security, with near-native performance. Besides, trusted execution environments (TEEs) shield critical software…

Cryptography and Security · Computer Science 2023-05-18 Jämes Ménétrey , Marcelo Pasin , Pascal Felber , Valerio Schiavoni

We introduce the Android Security Framework (ASF), a generic, extensible security framework for Android that enables the development and integration of a wide spectrum of security models in form of code-based security modules. The design of…

Cryptography and Security · Computer Science 2014-04-08 Michael Backes , Sven Bugiel , Sebastian Gerling , Philipp von Styp-Rekowsky