English
Related papers

Related papers: RA-WEBs: Remote Attestation for WEB services

200 papers

As an essential technology underpinning trusted computing, the trusted execution environment (TEE) allows one to launch computation tasks on both on- and off-premises data while assuring confidentiality and integrity. This article provides…

Cryptography and Security · Computer Science 2023-02-24 Xiaoguo Li , Bowen Zhao , Guomin Yang , Tao Xiang , Jian Weng , Robert H. Deng

Trusted Execution Environments (TEEs), such as Intel Software Guard eXtensions (SGX), are considered as a promising approach to resolve security challenges in clouds. TEEs protect the confidentiality and integrity of application code and…

Cryptography and Security · Computer Science 2020-12-14 Robert Krahn , Donald Dragoti , Franz Gregor , Do Le Quoc , Valerio Schiavoni , Pascal Felber , Clenimar Souza , Andrey Brito , Christof Fetzer

With the advent of cloud computing and the Internet, the commercialized website becomes capable of providing more web services, such as software as a service (SaaS) or function as a service (FaaS), for great user experiences. Undoubtedly,…

Cryptography and Security · Computer Science 2022-09-27 Gordon King , Hans Wang

Confidential services running in hardware-protected Trusted Execution Environments (TEEs) can provide higher security assurance, but this requires custom clients and protocols to distribute, update, and verify their attestation evidence.…

Cryptography and Security · Computer Science 2025-03-20 Antoine Delignat-Lavaud , Cédric Fournet , Kapil Vaswani , Manuel Costa , Sylvan Clebsch , Christoph M. Wintersteiger

For trusted execution environments (TEEs), remote attestation permits establishing trust in software executed on a remote host. It requires that the measurement of a remote TEE is both complete and fresh: We need to measure all aspects that…

Cryptography and Security · Computer Science 2023-11-07 Franz Gregor , Robert Krahn , Do Le Quoc , Christof Fetzer

Trusted Execution Environments (TEEs) protect sensitive code and data from the operating system, hypervisor, or other untrusted software. Different solutions exist, each proposing different features. Abstraction layers aim to unify the…

Cryptography and Security · Computer Science 2025-12-29 Quentin Michaud , Sara Ramezanian , Dhouha Ayed , Olivier Levillain , Joaquin Garcia-Alfaro

The growing complexity of modern computing platforms and the need for strong isolation protections among their software components has led to the increased adoption of Trusted Execution Environments (TEEs). While several commercial and…

Cryptography and Security · Computer Science 2022-05-26 Moritz Schneider , Ramya Jayaram Masti , Shweta Shinde , Srdjan Capkun , Ronald Perez

Hypertext Transfer Protocol Secure (HTTPS) protocol has become an integral part of modern Internet technology. Currently, it is the primary protocol for commercialized web applications. It can provide a fast, secure connection with a…

Cryptography and Security · Computer Science 2022-09-28 Gordon King , Hans Wang

Trusted execution environments (TEEs) provide an environment for running workloads in the cloud without having to trust cloud service providers, by offering additional hardware-assisted security guarantees. However, main memory encryption…

Cryptography and Security · Computer Science 2023-09-25 Jan Wichelmann , Anna Pätschke , Luca Wilke , Thomas Eisenbarth

Confidential Virtual Machines (CVMs) provide isolation guarantees for data in use, but their threat model does not include physical level protection and side-channel attacks. Therefore, current deployments rely on trusted cloud providers to…

Cryptography and Security · Computer Science 2025-06-19 Filip Rezabek , Jonathan Passerat-Palmbach , Moe Mahhouk , Frieder Erdmann , Andrew Miller

Trusted Execution Environments (TEEs) have been proposed as a solution to protect code confidentiality in scenarios where computation is outsourced to an untrusted operator. We study the resilience of such solutions to side-channel attacks…

Cryptography and Security · Computer Science 2022-12-16 Ivan Puddu , Moritz Schneider , Daniele Lain , Stefano Boschetto , Srdjan Čapkun

Attestation means providing evidence that a remote target system is worthy of trust for some sensitive interaction. Although attestation is already used in network access control, security management, and trusted execution environments, it…

Cryptography and Security · Computer Science 2026-03-09 Will Thomas , Logan Schmalz , Adam Petz , Perry Alexander , Joshua D. Guttman , Paul D. Rowe , James Carter

Guaranteeing runtime integrity of embedded system software is an open problem. Trade-offs between security and other priorities (e.g., cost or performance) are inherent, and resolving them is both challenging and important. The…

Cryptography and Security · Computer Science 2022-09-05 Ivan De Oliveira Nunes , Sashidhar Jakkamsetti , Youngil Kim , Gene Tsudik

Applications running in Trusted Execution Environments (TEEs) commonly use untrusted external services such as host File System. Adversaries may maliciously alter the normal service behavior to trigger subtle application bugs that would…

Cryptography and Security · Computer Science 2022-11-15 Meni Orenbach , Bar Raveh , Alon Berkenstadt , Yan Michalevsky , Shachar Itzhaky , Mark Silberstein

Attestation is a fundamental building block to establish trust over software systems. When used in conjunction with trusted execution environments, it guarantees the genuineness of the code executed against powerful attackers and threats,…

Cryptography and Security · Computer Science 2022-09-26 Jämes Ménétrey , Christian Göttel , Anum Khurshid , Marcelo Pasin , Pascal Felber , Valerio Schiavoni , Shahid Raza

With the rapidly evolving next-generation systems-of-systems, we face new security, resilience, and operational assurance challenges. In the face of the increasing attack landscape, it is necessary to cater to efficient mechanisms to verify…

Cryptography and Security · Computer Science 2021-07-13 Heini Bergsson Debes , Thanassis Giannetsos , Ioannis Krontiris

To keep a system secure, all devices in the system need to be benign. To avoid malicious and/or compromised devices, network access control such as authentication using a credential and remote attestation based on trusted hardware has been…

Cryptography and Security · Computer Science 2020-08-24 Takayuki Sasaki , Yusuke Shimada

Mobile devices rely on Trusted Execution Environments (TEEs) to execute security-critical code and protect sensitive assets. This security-critical code is modularized in components known as Trusted Applications (TAs). Vulnerabilities in…

Cryptography and Security · Computer Science 2026-01-29 Philipp Mao , Li Shi , Marcel Busch , Mathias Payer

The growing replication crisis across disciplines such as economics, finance, and other social sciences as well as computer science undermines the credibility of academic research. Current institutional solutions -- such as artifact…

Cryptography and Security · Computer Science 2026-03-27 Jiasun Li , Project Team

Public agencies are beginning to consider large language models (LLMs) as decision-support tools for grant evaluation. This creates a practical governance problem: the model and scoring rubric should not be exposed in a way that allows…

Cryptography and Security · Computer Science 2026-04-29 Kemal Bicakci