publication . Conference object . 2020

A Tale of TwoWorlds: Assessing the Vulnerability of Enclave Shielding Runtimes

Bulck, J.; Oswald, D.; Marin, E.; Aldoseri, A.; Garcia, F.; Piessens, F.;
Open Access English
  • Published: 10 Aug 2020
Abstract
This paper analyzes the vulnerability space arising in Trusted Execution Environments (TEEs) when interfacing a trusted enclave application with untrusted, potentially malicious code. Considerable research and industry effort has gone into developing TEE runtime libraries with the purpose of transparently shielding enclave application code from an adversarial environment. However, our analysis reveals that shielding requirements are generally not well-understood in real-world TEE runtime implementations. We expose several sanitization vulnerabilities at the level of the Application Binary Interface (ABI) and the Application Programming Interface (API) that can l...
Persistent Identifiers
Subjects
free text keywords: Trusted execution, TEE, Intel SGX, memory safety, side-channels
Funded by
EC| FutureTPM
Project
FutureTPM
Future Proofing the Connected World: A Quantum-Resistant Trusted Platform Module
  • Funder: European Commission (EC)
  • Project Code: 779391
  • Funding stream: H2020 | RIA
Download from
ZENODO
Conference object . 2020
Provider: ZENODO
Any information missing or wrong?Report an Issue