COIN Attacks
Mustakimur Rahman Khandaker, Yueqiang Cheng, Zhi Wang, Tao Wei
Abstract
Intel SGX is a hardware-based trusted execution environment (TEE), which enables an application to compute on confidential data in a secure enclave. SGX assumes a powerful threat model, in which only the CPU itself is trusted; anything else is untrusted, including the memory, firmware, system software, etc. An enclave interacts with its host application through an exposed, enclave-specific, (usually) bi-directional interface. This interface is the main attack surface of the enclave. The attacker can invoke the interface in any order and inputs. It is thus imperative to secure it through careful design and defensive programming.
Topics & Concepts
Computer scienceFirmwareOperating systemInterface (matter)Computer securityHost (biology)SoftwareConfidentialityEmbedded systemMalwareBubbleMaximum bubble pressure methodBiologyEcologySecurity and Verification in ComputingPhysical Unclonable Functions (PUFs) and Hardware SecurityAdvanced Malware Detection Techniques