Shielding applications from an untrusted cloud with Haven

ACM Transactions on Computer Systems

Volumn 33, Issue 3, 2015, Pages

  Baumann, Andrew ^a   Peinado, Marcus ^a   Hunt, Galen ^a  

^a MICROSOFT RESEARCH   (United States)

Author keywords

Cloud security; D.4.6 operating systems : Security and protection; D.4.7 operating systems : Organization and design; Design; Enclave; Intel SGX; Library OS; Security; Shielded execution; Trusted computing

Indexed keywords

COMPUTER HARDWARE; DESIGN; FIRMWARE; HARDWARE; TRUSTED COMPUTING; WINDOWS OPERATING SYSTEM;

CLOUD SECURITIES; ENCLAVE; INTEL SGX; SECURITY; SECURITY AND PROTECTION; SHIELDED EXECUTION;

DISTRIBUTED COMPUTER SYSTEMS;

EID: 84941008296     PISSN: 07342071     EISSN: 15577333     Source Type: Journal    
DOI: 10.1145/2799647     Document Type: Review

References (70)

1. Amazon Web Services. 2013. AWS CloudHSM Getting Started Guide. Retrieved July 23, 2015, from http://aws.amazon.com/cloudhsm/.
2. nd International Workshop on Hardware and Architectural Support for Security and Privacy.
3. Thomas E. Anderson, Brian N. Bershad, Edward D. Lazowska, and Henry M. Levy. 1992. Scheduler activations: Effective kernel support for the user-level management of threads. ACM Transactions on Computer Systems 10, 53-79.
4. th Conference on Innovative Data Systems Research.
5. ARM Limited. 2009. Building a Secure System Using TrustZone Technology. Ref. PRD29-GENC-009492C. ARM Limited.
6. th ACM European Conference on Computer Systems (EuroSys'13). 239-252. DOI:http://dx.doi.org/10.1145/2465351.2465375
7. th USENIX Conference on Operating Systems Design and Implementation. 267-283.
8. th USENIX Security Symposium. 105-120.
9. Ernie Brickell, Gary Graunke, Michael Neve, and Jean-Pierre Seifert. 2006. Software Mitigations to Hedge AES against Cache-Based Software Side Channel Vulnerabilities. Report 2006/052. Cryptology ePrint Archive.
10. th IEEE International Symposium on High-Performance Computer Architecture. 1-12.
11. th International Conference on Architectural Support for Programming Languages and Operating Systems. 12. DOI:http://dx.doi.org/10.1145/2451116.2451145
12. th International Conference on Architectural Support for Programming Languages and Operating Systems. 2-13. DOI:http://dx.doi.org/10.1145/1346281.1346284
13. Siddhartha Chhabra, Brian Rogers, Yan Solihin, and Milos Prvulovic. 2011. SecureME: A hardware-software approach to full system security. In Proceedings of the International Conference on Supercomputing. 108-119. DOI:http://dx.doi.org/10.1145/1995896.1995914
14. Cloud Security Alliance. 2013. Government Access to Information Survey. Retrieved July 23, 2015, from https://cloudsecurityalliance.org/research/surveys/#-nsa-prism.
15. th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS'14). 81-96. DOI:http://dx.doi.org/10.1145/2541940.2541986
16. th USENIX Symposium on Operating Systems Design and Implementation. 339-354.
17. th USENIX Symposium on Operating Systems Design and Implementation. 181-196.
18. th IEEE International Symposium on High-Performance Computer Architecture. 295-306.
19. Barton Gellman and Laura Poitras. 2013. U.S., British intelligence mining data from nine U.S. Internet companies in broad secret program. Washington Post, June 6, 2013.
20. Barton Gellman and Ashkan Soltani. 2013. NSA infiltrates links to yahoo, google data centers worldwide, snowden documents say. Washington Post, October 30, 2013.
21. Craig Gentry. 2009. A Fully Homomorphic Encryption Scheme. Ph.D. Dissertation. Stanford University, Stanford, CA.
22. Craig Gentry, Shai Halevi, and Nigel P. Smart. 2012. Homomorphic evaluation of the AES circuit. In Advances in Cryptology - CRYPTO 2012. Lecture Notes in Computer Science, Vol. 7417. Springer, 850-867,
23. rd USENIX Symposium on Operating Systems Design and Implementation. 73-86. http://dl.acm.org/citation.cfm?id=296806.296812
24. th USENIX Symposium on Operating Systems Design and Implementation.
25. nd International Workshop on Hardware and Architectural Support for Security and Privacy. Article No. 11. DOI:http://dx.doi.org/10.1145/2487726.2488370
26. th International Conference on Architectural Support for Programming Languages and Operating Systems. 265-278. DOI:http://dx.doi.org/10.1145/2451116.2451146
27. Fangyong Hou, Nong Xiao, Fang Liu, Hongjun He, and Dawu Gu. 2009. Performance and consistency improvements of hash tree based disk storage protection. In Proceedings of the 2009 IEEE International Conference on Networking, Architecture, and Storage. 51-56.
28. Jon Howell, Bryan Parno, and John R. Douceur. 2013. How to run POSIX apps in a minimal picoprocess. In Proceedings of the 2013 USENIX Annual Technical Conference. 321-332.
29. Intel Corp. 2013. Software Guard Extensions Programming Reference. Ref. #329298-001. Intel Corp. https://software.intel.com/sites/default/files/329298-001.pdf.
30. Intel Corp. 2014a. Intel 64 and IA-32 Architectures Software Developer's Manual. Ref. #253665-050US. Intel Corp.
31. Intel Corp. 2014b. Software Guard Extensions Programming Reference, Rev. 2. Ref. #329298-002. Intel Corp. https://software.intel.com/sites/default/files/managed/48/88/329298-002.pdf.
32. nd ACM Symposium on Operating Systems Principles. 207-220. DOI:http://dx.doi.org/10.1145/1629575.1629596
33. nd International Symposium on Computer Architecture. 2-13. DOI:http://dx.doi.org/10.1109/ISCA.2005.14
34. th ACM Symposium on Operating Systems Principles. 132-140.
35. Yanlin Li, Jonathan M. McCune, James Newsome, Adrian Perrig, Brandon Baker, and Will Drewry. 2014. MiniBox: A two-way sandbox for x86 native code. In Proceedings of the 2014 USENIX Annual Technical Conference.
36. th International Conference on Architectural Support for Programming Languages and Operating Systems. 168-177.
37. th ACM Symposium on Operating Systems Principles. 178-192. DOI:http://dx.doi.org/10.1145/945445.945463
38. th USENIX Symposium on Networked Systems Design and Implementation. https://www.usenix.org/conference/nsdi15/technical-sessions/presentation/lorch.
39. th USENIX Symposium on Operating Systems Design and Implementation. 135-150.
40. th ACM Symposium on Operating Systems Principles. 110-121.
41. Jonathan M. McCune, Yanlin Li, Ning Qu, Zongwei Zhou, Anupam Datta, Virgil Gligor, and Adrian Perrig. 2010. TrustVisor: Efficient TCB reduction and attestation. In Proceedings of the IEEE Symposium on Security and Privacy. 143-158. DOI:http://dx.doi.org/10.1109/SP.2010.17
42. rd ACM SOGOPS/EuroSys European Conference on Computer Systems (EuroSys'08). 315-328. DOI:http://dx.doi.org/10.1145/1352592.1352625
43. David McGrew and John Viega. 2004. The Galois/Counter Mode of Operation (GCM). Retrieved July 24, 2015, from http://csrc.nist.gov/groups/ST/toolkit/BCM/documents/proposedmodes/gcm/gcm-spec.pdf.
44. nd International Workshop on Hardware and Architectural Support for Security and Privacy. Article No. 10. DOI:http://dx.doi.org/10.1145/2487726.2488368
45. Ralph Merkle. 1987. A digital signature based on a conventional encryption function. In Advances in Cryptology - CRYPTO '87. Lecture Notes in Computer Science, Vol. 293. Springer, 369-378.
46. Claire Cain Miller. 2014. Revelations of N.S.A. spying cost U.S. tech companies. New York Times, March 21, 2014.
47. th ACM Conference on Computer and Communications Security. 13-24. DOI:http://dx.doi.org/10.1145/2508859.2516678
48. Bryan Parno, Jacob R. Lorch, John R. Douceur, James Mickens, and Jonathan M. McCune. 2011. Memoir: Practical state continuity for protected modules. In Proceedings of the IEEE Symposium on Security and Privacy. 379-394. DOI:http://dx.doi.org/10.1109/SP.2011.38
49. Dan Plastina. 2015. Azure Key Vault - Making the Cloud Safer. Retrieved July 24, 2015, from http://blogs.technet.com/b/kv/archive/2015/01/08/azure-key-vault-making-the-cloud-safer.aspx.
50. rd ACM Symposium on Operating Systems Principles. 85-100. DOI:http://dx.doi.org/10.1145/2043556.2043566
51. Gerald J. Popek and Robert P. Goldberg. 1974. Formal requirements for virtualizable third generation architectures. Communications of the ACM 17, 7, 412-421. DOI:http://dx.doi.org/10.1145/361011.361073
52. th International Conference on Architectural Support for Programming Languages and Operating Systems. 291-304.
53. PrivateCore. 2014. Trustworthy Computing for OpenStack with vCage. Retrieved July 24, 2015, from http://privatecore.com/vcage/.
54. Himanshu Raj, David Robinson, Talha Bin Tariq, Paul England, Stefan Saroiu, and Alec Wolman. 2011. Credo: Trusted Computing for Guest VMs with a Commodity Hypervisor. Technical Report MSR-TR-2011-130. Microsoft Research.
55. th USENIX Security Symposium.
56. th International Conference on Architectural Support for Programming Languages and Operating Systems. 67-80. DOI:http://dx.doi.org/10.1145/2541940.2541949
57. rd ACM Symposium on Operating Systems Principles. 249-264. DOI:http://dx.doi.org/10.1145/2043556.2043580
58. Sean W. Smith and Steve Weingart. 1999. Building a high-performance, programmable secure coprocessor. Computer Networks 31, 9, 831-860. http://dl.acm.org/citation.cfm?id=324119.324128
59. th USENIX Symposium on Operating Systems Design and Implementation. 279-292. http://dl.acm.org/citation.cfm?id=1267308.1267328
60. Sai Deep Tetali, Mohsen Lesani, Rupak Majumdar, and Todd Millstein. 2013. MrCrypt: Static analysis for secure cloud computations. In Proceedings of the 2013 ACM SIGPLAN Conference on Object-Oriented Programming Systems, Languages, and Applications. 271-286. DOI:http://dx.doi.org/10.1145/2509136.2509554
61. Transaction Processing Performance Council. 2010. TPC Benchmark E Standard Specification. Rev. 1.12.0. Transaction Processing Performance Council.
62. Trusted Computing Group. 2011. TPM Main Specification Level 2. Version 1.2, Revision 116. Trusted Computing Group.
63. th European Conference on Computer Systems (EuroSys'14). Article No. 9.
64. th International Conference on Trust and Trustworthy Computing. 159-178. DOI:http://dx.doi.org/10.1007/978-3-642-30921-2-10
65. Yuanzhong Xu, Weidong Cui, and Marcus Peinado. 2015. Controlled-channel attacks: Deterministic side channels for untrusted operating systems. In Proceedings of the IEEE Symposium on Security and Privacy. IEEE, Los Alamitos, CA.
66. th International Conference on Virtual Execution Environments. 71-80. DOI:http://dx.doi.org/10.1145/1346256.1346267
67. th IEEE Symposium on Security and Privacy. 79-93.
68. Aaram Yun, Chunhui Shi, and Yongdae Kim. 2009. On protecting integrity and confidentiality of cryptographic file system for outsourced storage. In Proceedings of the 2009 ACM Workshop on Cloud Computing Security. 67-76.
69. rd ACM Symposium on Operating Systems Principles. 203-216. DOI:http://dx.doi.org/10.1145/2043556.2043576
70. th ACM European Conference on Computer Systems (EuroSys'09). 89-102. DOI:http://dx.doi.org/10.1145/1519065.1519076