Security vulnerabilities of SGX and countermeasures: A survey
Trusted Execution Environments (TEEs) have been widely used in many security-critical
applications. The popularity of TEEs derives from its high security and trustworthiness …
applications. The popularity of TEEs derives from its high security and trustworthiness …
Intel tdx demystified: A top-down approach
Intel Trust Domain Extensions (TDX) is an architectural extension in the 4th Generation Intel
Xeon Scalable Processor that supports confidential computing. TDX allows the deployment …
Xeon Scalable Processor that supports confidential computing. TDX allows the deployment …
PPFL: Privacy-preserving federated learning with trusted execution environments
We propose and implement a Privacy-preserving Federated Learning (PPFL) framework for
mobile systems to limit privacy leakages in federated learning. Leveraging the widespread …
mobile systems to limit privacy leakages in federated learning. Leveraging the widespread …
Keystone: An open framework for architecting trusted execution environments
Trusted execution environments (TEEs) see rising use in devices from embedded sensors to
cloud servers and encompass a range of cost, power constraints, and security threat model …
cloud servers and encompass a range of cost, power constraints, and security threat model …
Ekiden: A platform for confidentiality-preserving, trustworthy, and performant smart contracts
Smart contracts are applications that execute on blockchains. Today they manage billions of
dollars in value and motivate visionary plans for pervasive blockchain deployment. While …
dollars in value and motivate visionary plans for pervasive blockchain deployment. While …
{Graphene-SGX}: A practical library {OS} for unmodified applications on {SGX}
Intel SGX hardware enables applications to protect themselves from potentially-malicious
OSes or hypervisors. In cloud computing and other systems, many users and applications …
OSes or hypervisors. In cloud computing and other systems, many users and applications …
{SCONE}: Secure linux containers with intel {SGX}
S Arnautov, B Trach, F Gregor, T Knauth… - … USENIX Symposium on …, 2016 - usenix.org
In multi-tenant environments, Linux containers managed by Docker or Kubernetes have a
lower resource footprint, faster startup times, and higher I/O performance compared to virtual …
lower resource footprint, faster startup times, and higher I/O performance compared to virtual …
Software grand exposure:{SGX} cache attacks are practical
F Brasser, U Müller, A Dmitrienko… - 11th USENIX workshop …, 2017 - usenix.org
Intel SGX isolates the memory of security-critical applications from the untrusted OS.
However, it has been speculated that SGX may be vulnerable to side-channel attacks …
However, it has been speculated that SGX may be vulnerable to side-channel attacks …
Sgxpectre: Stealing intel secrets from sgx enclaves via speculative execution
Speculative execution side-channel vulnerabilities in micro-architecture processors have
raised concerns about the security of Intel SGX. To understand clearly the security impact of …
raised concerns about the security of Intel SGX. To understand clearly the security impact of …
Machine learning models that remember too much
Machine learning (ML) is becoming a commodity. Numerous ML frameworks and services
are available to data holders who are not ML experts but want to train predictive models on …
are available to data holders who are not ML experts but want to train predictive models on …