Victor Costan scite author profile

Abstract-We present a novel approach to building hardware support for providing strong security guarantees for computations running in the cloud (shared hardware in massive data centers), while maintaining the high performance and low cost that make cloud computing attractive in the first place. We propose augmenting regular cloud servers with a Trusted Computation Base (TCB) that can securely perform high-performance computations. Our TCB achieves cost savings by spreading functionality across two paired chips. We show that making a Field-Programmable Gate Array (FPGA) a part of the TCB benefits security and performance, and we explore a new method for defending the computation inside the TCB against sidechannel attacks.

show abstract

Secure Processors Part II: Intel SGX Security Analysis and MIT Sanctum Architecture

Costan

Lebedev

Devadas

2017

FNT in Electronic Design Automation

View full text Add to dashboard Cite

The Trusted Execution Module: Commodity General-Purpose Trusted Computing

Costan¹,

Sarmenta²,

Dijk³

et al. 2008

View full text Add to dashboard Cite

Abstract. This paper introduces the Trusted Execution Module (TEM); a high-level specification for a commodity chip that can execute user-supplied procedures in a trusted environment. The TEM is capable of securely executing partially-encrypted procedures/closures expressing arbitrary computation. These closures can be generated by any (potentially untrusted) party who knows the TEM's public encryption key. Compared to a conventional smartcard, which is typically used by pre-programming a limited set of domain-or application-specific commands onto the smartcard, and compared to the Trusted Platform Module (TPM), which is limited to a fixed set of cryptographic functions that cannot be combined to provide general-purpose trusted computing, the TEM is significantly more flexible. Yet we present a working implementation using existing inexpensive Javacard smartcards that does not require any export-restricted technology. The TEM's design enables a new style of programming, which in turn enables new applications. We show that the TEM's guarantees of secure execution enable exciting applications that include, but are not limited to, mobile agents, peer-topeer multiplayer online games, and anonymous offline payments.

show abstract

Secure Processors Part I: Background, Taxonomy for Secure Enclaves and Intel SGX Architecture

Costan

Lebedev

Devadas

2017

FNT in Electronic Design Automation

View full text Add to dashboard Cite

Authenticated storage using small trusted hardware

Yang

Costan

Zeldovich

et al. 2013

View full text Add to dashboard Cite

A major security concern with outsourcing data storage to thirdparty providers is authenticating the integrity and freshness of data. State-of-the-art software-based approaches require clients to maintain state and cannot immediately detect forking attacks, while approaches that introduce limited trusted hardware (e.g., a monotonic counter) at the storage server achieve low throughput. This paper proposes a new design for authenticating data storage using a small piece of high-performance trusted hardware attached to an untrusted server. The proposed design achieves significantly higher throughput than previous designs. The server-side trusted hardware allows clients to authenticate data integrity and freshness without keeping any mutable client-side state. Our design achieves high performance by parallelizing server-side authentication operations and permitting the untrusted server to maintain caches and schedule disk writes, while enforcing precise crash recovery and write access control.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Victor Costan

Secure Processors Part I: Background, Taxonomy for Secure Enclaves and Intel SGX Architecture

Security challenges and opportunities in adaptive and reconfigurable hardware

Secure Processors Part II: Intel SGX Security Analysis and MIT Sanctum Architecture

The Trusted Execution Module: Commodity General-Purpose Trusted Computing

Secure Processors Part I: Background, Taxonomy for Secure Enclaves and Intel SGX Architecture

Authenticated storage using small trusted hardware

Contact Info

Product

Resources

About