A Secure Framework for User-Key Provisioning to SGX Enclaves

Machida, Takanori; Yamamoto, Daisuke; Morikawa, Ikuya; Kokubo, Hirotaka; Kojima, Hisashi

doi:10.1007/978-3-319-98530-5_63

Cited by 2 publications

(2 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Using the keyword "TEE" alone revealed several publications that all focus on the general conceptualizations of the technology [11,12,13] and on the technological feasibility perspective [26], where performance is presented as the primary technical drawback [2]. In addition, the research focuses on the isolation, encryption, and attestation schemes of TEEs [16,17,18,20]. Interview Method.…”

Section: Research Approachmentioning

confidence: 99%

Overcoming Cloud Concerns with Trusted Execution Environments? Exploring the Organizational Perception of a Novel Security Technology in Regulated Swiss Companies

Geppert¹,

Anderegg²,

Frei³

et al. 2022

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

Trusted execution environments are a new approach for isolating data, specific parts of code, or an entire application within untrusted cloud environments. This emerging security technology could also enable the migration to cloud infrastructures for organizations working with highly sensitive data. As current research does not address the organizational perception of trusted execution environments (TEEs), we conducted an explorative study to clarify the technological, environmental, and organizational views on this technology by health care, life sciences, and banking companies in Switzerland. The interview findings show that in these industries, missing technological knowledge as well as privacy and process regulation are perceived to be the most critical driver for organizational adoption of TEEs. The identified low intrinsic motivation to adopt novel technologies permits us to conclude that clarifying the regulatory impact of TEEs could drive future adoption by organizations.

show abstract

Section: Research Approachmentioning

confidence: 99%

Overcoming Cloud Concerns with Trusted Execution Environments? Exploring the Organizational Perception of a Novel Security Technology in Regulated Swiss Companies

Geppert¹,

Anderegg²,

Frei³

et al. 2022

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

show abstract

“…We recall that our current prototype assumes a bootstrapping phase for establishing a secure channel between the server-side SGX enclave and the client in order to exchange the client's encryption key. This functionality is not implemented, as we are interested in analysing the server-side overhead of our secure deduplication schemes, and it would just be a matter of instantiating with one of many key exchange protocols for SGX [14,33] with minimal performance overhead. This process only needs to be done once, namely when the client connects to the storage server, then multiple data storage and retrieval requests can be done efficiently without requiring the exchange of keys.…”

Section: Secure Schemesmentioning

confidence: 99%

S2Dedup

Miranda

Esteves

Portela

et al. 2021

Proceedings of the 14th ACM International Conference on Systems and Storage

View full text Add to dashboard Cite

Secure deduplication allows removing duplicate content at third-party storage services while preserving the privacy of users' data. However, current solutions are built with strict designs that cannot be adapted to storage service and applications with different security and performance requirements.We present S2Dedup, a trusted hardware-based privacypreserving deduplication system designed to support multiple security schemes that enable different levels of performance, security guarantees and space savings. An in-depth evaluation shows these trade-offs for the distinct Intel SGXbased secure schemes supported by our prototype.Moreover, we propose a novel Epoch and Exact Frequency scheme that prevents frequency analysis leakage attacks present in current deterministic approaches for secure deduplication while maintaining similar performance and space savings to state-of-the-art approaches.

show abstract

A Secure Framework for User-Key Provisioning to SGX Enclaves

Cited by 2 publications

References 7 publications

Overcoming Cloud Concerns with Trusted Execution Environments? Exploring the Organizational Perception of a Novel Security Technology in Regulated Swiss Companies

Overcoming Cloud Concerns with Trusted Execution Environments? Exploring the Organizational Perception of a Novel Security Technology in Regulated Swiss Companies

S2Dedup

Contact Info

Product

Resources

About