Serverless computing: state-of-the-art, challenges and opportunities
Serverless computing is growing in popularity by virtue of its lightweight and simplicity of
management. It achieves these merits by reducing the granularity of the computing unit to …
management. It achieves these merits by reducing the granularity of the computing unit to …
{Graphene-SGX}: A practical library {OS} for unmodified applications on {SGX}
Intel SGX hardware enables applications to protect themselves from potentially-malicious
OSes or hypervisors. In cloud computing and other systems, many users and applications …
OSes or hypervisors. In cloud computing and other systems, many users and applications …
[PDF][PDF] T-SGX: Eradicating Controlled-Channel Attacks Against Enclave Programs.
Intel Software Guard Extensions (SGX) is a hardware-based trusted execution environment
(TEE) that enables secure execution of a program in an isolated environment, an enclave …
(TEE) that enables secure execution of a program in an isolated environment, an enclave …
Shielding applications from an untrusted cloud with haven
Today's cloud computing infrastructure requires substantial trust. Cloud users rely on both
the provider's staff and its globally distributed software/hardware platform not to expose any …
the provider's staff and its globally distributed software/hardware platform not to expose any …
Telling your secrets without page faults: Stealthy page {Table-Based} attacks on enclaved execution
Protected module architectures, such as Intel SGX, enable strong trusted computing
guarantees for hardware-enforced enclaves on top a potentially malicious operating system …
guarantees for hardware-enforced enclaves on top a potentially malicious operating system …
[PDF][PDF] Panoply: Low-TCB Linux Applications With SGX Enclaves.
Intel SGX, a new security capability in emerging CPUs, allows user-level application code to
execute in hardwareisolated enclaves. Enclave memory is isolated from all other software …
execute in hardwareisolated enclaves. Enclave memory is isolated from all other software …
ZeroTrace: Oblivious memory primitives from Intel SGX
We are witnessing a confluence between applied cryptography and secure hardware
systems in enabling secure cloud computing. On one hand, work in applied cryptography …
systems in enabling secure cloud computing. On one hand, work in applied cryptography …
Hacking in darkness: Return-oriented programming against secure enclaves
Intel Software Guard Extensions (SGX) is a hardware-based Trusted Execution Environment
(TEE) that is widely seen as a promising solution to traditional security threats. While SGX …
(TEE) that is widely seen as a promising solution to traditional security threats. While SGX …
Glamdring: Automatic application partitioning for intel {SGX}
Trusted execution support in modern CPUs, as offered by Intel SGX enclaves, can protect
applications in untrusted environments. While prior work has shown that legacy applications …
applications in untrusted environments. While prior work has shown that legacy applications …
[PDF][PDF] OBLIVIATE: A Data Oblivious Filesystem for Intel SGX.
Intel SGX provides confidentiality and integrity of a program running within the confines of an
enclave, and is expected to enable valuable security applications such as private …
enclave, and is expected to enable valuable security applications such as private …