- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
NDSS 2026 - EXIA: Trusted Transitions for Enclaves via External-Input Attestation
SESSION
NDSS Symposium 2026
23 February–27 February 2026, San Diego, California
PAPER
EXIA: Trusted Transitions for Enclaves via External-Input Attestation
https://www.ndss-symposium.org/ndss-paper/exia-trusted-transitions-for-enclaves-via-external-input-attestation/
Trusted Execution Environment (TEE) has been adopted to secure computation outsourced to untrusted clouds, and the associated remote attestation mechanism enables the user to verify the integrity of the outsourced computation at launch time. However, memory corruption attacks break TEE’s security guarantees without being detected after launch-time attestation. While control-flow attestation (CFA) schemes aim to detect runtime compromises, most existing CFA schemes lack concrete verification methods and can be bypassed by data-only attacks. In this paper, we propose the concept of External-Input Attestation to attest all writes to TEE-protected applications, based on the observation that memory corruption attacks typically start with unintended writes. This approach ensures a trusted enclave state by verifying all writes match expectations, transforming security issues, such as control-flow hijacking, into reliability issues, such as a software crash due to unexpected input. For efficient reference measurement derivation and verification, the current version of External-Input Attestation is limited to enclaved applications whose inputs are known to the verifier. This design is validated by implementing and evaluating prototypes on AMD SEV-SNP and Penglai, where security and performance evaluations show a minimal performance overhead in case studies, including secure model training, model inference, database workloads, and key management.
AUTHORS
Zhen Huang (Shanghai Jiao Tong University), Yidi Kao (Auburn University), Sanchuan Chen (Auburn University), Guoxing Chen (Shanghai Jiao Tong University), Yan Meng (Shanghai Jiao Tong University), Haojin Zhu (Shanghai Jiao Tong University)
ABOUT NDSS Symposium
The Network and Distributed System Security Symposium (NDSS) fosters information exchange among researchers and practitioners of network and distributed system security. The target audience includes those interested in practical aspects of network and distributed system security, with a focus on actual system design and implementation. A major goal is to encourage and enable the Internet community to apply, deploy, and advance the state of available security technologies. https://www.ndss-symposium.org/
#NDSSSymposium #NDSS26 #NDSS2026 #InternetSecurity
Видео NDSS 2026 - EXIA: Trusted Transitions for Enclaves via External-Input Attestation канала NDSS Symposium
NDSS Symposium 2026
23 February–27 February 2026, San Diego, California
PAPER
EXIA: Trusted Transitions for Enclaves via External-Input Attestation
https://www.ndss-symposium.org/ndss-paper/exia-trusted-transitions-for-enclaves-via-external-input-attestation/
Trusted Execution Environment (TEE) has been adopted to secure computation outsourced to untrusted clouds, and the associated remote attestation mechanism enables the user to verify the integrity of the outsourced computation at launch time. However, memory corruption attacks break TEE’s security guarantees without being detected after launch-time attestation. While control-flow attestation (CFA) schemes aim to detect runtime compromises, most existing CFA schemes lack concrete verification methods and can be bypassed by data-only attacks. In this paper, we propose the concept of External-Input Attestation to attest all writes to TEE-protected applications, based on the observation that memory corruption attacks typically start with unintended writes. This approach ensures a trusted enclave state by verifying all writes match expectations, transforming security issues, such as control-flow hijacking, into reliability issues, such as a software crash due to unexpected input. For efficient reference measurement derivation and verification, the current version of External-Input Attestation is limited to enclaved applications whose inputs are known to the verifier. This design is validated by implementing and evaluating prototypes on AMD SEV-SNP and Penglai, where security and performance evaluations show a minimal performance overhead in case studies, including secure model training, model inference, database workloads, and key management.
AUTHORS
Zhen Huang (Shanghai Jiao Tong University), Yidi Kao (Auburn University), Sanchuan Chen (Auburn University), Guoxing Chen (Shanghai Jiao Tong University), Yan Meng (Shanghai Jiao Tong University), Haojin Zhu (Shanghai Jiao Tong University)
ABOUT NDSS Symposium
The Network and Distributed System Security Symposium (NDSS) fosters information exchange among researchers and practitioners of network and distributed system security. The target audience includes those interested in practical aspects of network and distributed system security, with a focus on actual system design and implementation. A major goal is to encourage and enable the Internet community to apply, deploy, and advance the state of available security technologies. https://www.ndss-symposium.org/
#NDSSSymposium #NDSS26 #NDSS2026 #InternetSecurity
Видео NDSS 2026 - EXIA: Trusted Transitions for Enclaves via External-Input Attestation канала NDSS Symposium
Комментарии отсутствуют
Информация о видео
27 марта 2026 г. 4:00:04
00:15:43
Другие видео канала
NDSS 2025 - The Discriminative Power of Cross-layer RTTs in Fingerprinting Proxy Traffic
NDSS 2026 - SNPeek: Side-Channel Analysis for Privacy Applications on Confidential VMs
NDSS 2025 - Rethinking Trust in Forge-Based Git Security
NDSS 2025 - NodeMedic-FINE: Automatic Detection and Exploit Synthesis for Node.js Vulnerabilities
NDSS 2025 - WAVEN: WebAssembly Memory Virtualization for Enclaves
NDSS 2025 - Quantitatively and Accurately Gauging the Exploitability of Speculative Gadgets
NDSS 2025 - Ctrl+Alt+Deceive: Quantifying User Exposure to Online Scams
NDSS 2023 - REDsec: Running Encrypted Discretized Neural Networks in Seconds
NDSS 2026 - PrivCode: When Code Generation Meets Differential Privacy
NDSS 2024 - LDR: Secure and Efficient Linux Driver Runtime for Embedded TEE Systems
NDSS 2023 - OBSan: An Out-Of-Bound Sanitizer to Harden DNN Executables
NDSS 2024 - BGP-iSec: Improved Security of Internet Routing Against Post-ROV Attacks
NDSS 2025 - Workshop on Binary Analysis Research (BAR) 2025, Session I
NDSS 2025 - SHAFT: Secure, Handy, Accurate and Fast Transformer Inference
VehicleSec 2023 - VASP: V2X Application Spoofing Platform
NDSS 2023 - Partitioning Ethereum without Eclipsing It
NDSS 2025 - SIGuard: Guarding Secure Inference with Post Data Privacy
NDSS 2025 - Was This You? Investigating the Design Considerations for Suspicious Login Notifications
NDSS 2025 - Secret Spilling Drive: Leaking User Behavior through SSD Contention
NDSS 2026 - Select-Then-Compute
