Authors
Florian Tramer, Fan Zhang, Huang Lin, Jean-Pierre Hubaux, Ari Juels, Elaine Shi
Publication date
2017/4/26
Conference
2017 IEEE European Symposium on Security and Privacy (EuroS&P)
Pages
19-34
Publisher
IEEE
Description
Trusted hardware systems, such as Intel's new SGX instruction set architecture extension, aim to provide strong confidentiality and integrity assurances for applications. Recent work, however, raises serious concerns about the vulnerability of such systems to side-channel attacks. We propose, formalize, and explore a cryptographic primitive called a Sealed-Glass Proof (SGP) that models computation possible in an isolated execution environment with unbounded leakage, and thus in the face of arbitrary side-channels. A SGP specifically models the capabilities of trusted hardware that can attest to correct execution of a piece of code, but whose execution is transparent, meaning that an application's secrets and state are visible to other processes on the same host. Despite this strong threat model, we show that SGPs enable a range of practical applications. Our key observation is that SGPs permit safe verifiable …
Total citations
20172018201920202021202220232024131321221716162
Scholar articles
F Tramer, F Zhang, H Lin, JP Hubaux, A Juels, E Shi - 2017 IEEE European Symposium on Security and …, 2017