Concept
Trusted computing base
Related publications (7)
A RISC-V Extension to Minimize Privileges of Enclave Runtimes
Edouard Bugnion, Neelu Shivprakash Kalani
In confidential computing, the view of the system software is Manichean: the host operating system is untrusted and the TEE runtime system is fully trusted. However, the runtime system is often as complex as a full operating system, and thus is not free fr ...
ACM2023Midas: Systematic Kernel TOCTTOU Protection
Mathias Josef Payer, Atri Bhattacharyya, Uros Tesic
Double-fetch bugs are a plague across all major operating system kernels. They occur when data is fetched twice across the user/kernel trust boundary while allowing concurrent modification. Such bugs enable an attacker to illegally access memory, cause den ...
2022PoLPer: Process-Aware Restriction of Over-Privileged Setuid Calls in Legacy Applications
Mathias Josef Payer, Zhenyu Wu
setuid system calls enable critical functions such as user authentications and modular privileged components. Such operations must only be executed after careful validation. However, current systems do not perform rigorous checks, allowing exploitation of ...
ASSOC COMPUTING MACHINERY2019PANACEA: Tunable Privacy for Access Controlled Data in Peer-to-Peer Systems
Peer-to-peer paradigm is increasingly employed for organizing distributed resources for various applications, e.g. content distribution, open storage grid etc. In open environments, even when proper access control mechanisms supervise the access to the res ...
EPFL Infoscience2010Tunable Privacy for Access Controlled Data in Peer-to-Peer Systems
Peer-to-peer paradigm is increasingly employed for organizing distributed resources for various applications, e.g. content distribution, open storage grid etc. In open environments, even when proper access control mechanisms supervise the access to the res ...
2010On Privacy Losses in the Trusted Agent Model (Abstract)
Tamper-proof devices are pretty powerful. They typically make security applications simpler (provided that the tamper-proof assumption is not violated). For application requiring privacy, we observe that some properties may become harder (if possible at al ...
2009Reactive security for multimedia systems
Books, videos, music, still images and any other type of media information, share a number of features that enable their migration from traditional delivery technologies to an all-electronic delivery model. They can easily be digitized, stored, compressed ...
EPFL2004