A comparison study of intel SGX and AMD memory encryption technology

Mofrad, Saeid; Zhang, Fengwei; Lu, Shiyong; Shi, Weidong

doi:10.1145/3214292.3214301

Cited by 69 publications

(36 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Trusted Execution Environment(TEE). There is no separate section to discuss hardware security in this article since there is quite some literature [25]- [31] about it. But we will point out the function of mobile hardware security technology when introducing and discussing mobile payment security technologies.…”

Section: The Right Part Ofmentioning

confidence: 99%

See 1 more Smart Citation

State of the Art: Secure Mobile Payment

Liu

Peng

2020

IEEE Access

View full text Add to dashboard Cite

With mobile payments popular around the world, payers can conduct a payment anytime and anywhere. While providing great convenience, mobile payment also brings many payment security issues. This paper is the first comprehensive review of secure mobile payment. We classify the mobile payment into TPC(third-party payment company)-led mobile payment and Bank-led mobile payment, and based on this, summarize the system structure of mobile payment. Then we discuss the mobile payment security technology framework from Tokenization, PAN(bank card primary account number) binding, and Secure Payment Authentication, respectively. Besides, this paper introduces secure technologies(hardware and software) used in these procedures, discusses and analyzes the security issues that they have been encountered, summarise open issues, and proposes future development directions. In the end, we give the discussion and comparison of popular and representative mobile payment applications, including Alipay, Wechat Pay, Apple Pay, Samsung Pay, and Google Pay. INDEX TERMS Tokenization, symmetric cryptosystem, hybrid cryptosystem, PAN binding, TOTP, remote payment, near-field payment.

show abstract

Section: The Right Part Ofmentioning

confidence: 99%

“…SGX [29] is an innovative secure extension to the Instruction Set Architecture (ISA), a TEE based on a mechanism of ''reverse sandbox'' in which sensitive processes address space is protected -at CPU level -even against OS. MET [30], [31] is the hardware-assisted TEE scheme released by AMD that encrypts and protects system memory.…”

Section: The Right Part Ofmentioning

confidence: 99%

State of the Art: Secure Mobile Payment

Liu

Peng

2020

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Isolation features implemented in firmware and hardware prevent access to the enclave's memory by the operating system and other enclaves. While we use Intel SGX enclaves in our implementation of the privacy-preserving service, alternative commodity TEEs [13], [14] may be used.…”

Section: Isolated Executionmentioning

confidence: 99%

Privacy-Enabled Recommendations for Software Vulnerabilities

Karlsson

Paladi

2019

2019 IEEE Intl Conf on Dependable, Autonomic and Secure Computing, Intl Conf on Pervasive Intelligence and Computing, Intl Conf

View full text Add to dashboard Cite

New software vulnerabilities are published daily. Prioritizing vulnerabilities according to their relevance to the collection of software an organization uses is a costly and slow process. While recommender systems were earlier proposed to address this issue, they ignore the security of the vulnerability prioritization data. As a result, a malicious operator or a third party adversary can collect vulnerability prioritization data to identify the security assets in the enterprise deployments of client organizations. To address this, we propose a solution that leverages isolated execution to protect the privacy of vulnerability profiles without compromising data integrity. To validate an implementation of the proposed solution we integrated it with an existing recommender system for software vulnerabilities. The evaluation of our implementation shows that the proposed solution can effectively complement existing recommender systems for software vulnerabilities.

show abstract

“…To overcome these issues, hardware-assisted Trusted Execution Environments (TEEs) such as Intel SGX [24,50], ARM TrustZone [70], IBM SecureBlue++ [29,69], and AMD SEV [42] offer a practical approach to protect their services in an untrusted cloud [52]. The TEE technologies provide strong integrity and confidentiality guarantees regardless of the trustworthiness of the underlying software (e.g., the operating system or the hypervisor).…”

Section: Introductionmentioning

confidence: 99%