2 research outputs found
DR.SGX: Hardening SGX Enclaves against Cache Attacks with Data Location Randomization
Recent research has demonstrated that Intel's SGX is vulnerable to various
software-based side-channel attacks. In particular, attacks that monitor CPU
caches shared between the victim enclave and untrusted software enable accurate
leakage of secret enclave data. Known defenses assume developer assistance,
require hardware changes, impose high overhead, or prevent only some of the
known attacks. In this paper we propose data location randomization as a novel
defensive approach to address the threat of side-channel attacks. Our main goal
is to break the link between the cache observations by the privileged adversary
and the actual data accesses by the victim. We design and implement a
compiler-based tool called DR.SGX that instruments enclave code such that data
locations are permuted at the granularity of cache lines. We realize the
permutation with the CPU's cryptographic hardware-acceleration units providing
secure randomization. To prevent correlation of repeated memory accesses we
continuously re-randomize all enclave data during execution. Our solution
effectively protects many (but not all) enclaves from cache attacks and
provides a complementary enclave hardening technique that is especially useful
against unpredictable information leakage
ASINA project: towards a methodological data-driven sustainable and safe-by-design approach for the development of nanomaterials
The novel chemical strategy for sustainability calls for a Sustainable and Safe-by-Design
(SSbD) holistic approach to achieve protection of public health and the environment,
industrial relevance, societal empowerment, and regulatory preparedness. Based on it, the ASINA project expands a data-driven Management Methodology (ASINA-SMM) capturing quality, safety, and sustainability criteria across the Nano-Enabled Products’ (NEPs) life cycle. We base the development of this methodology through value chains of highly representative classes of NEPs in the market, namely, (i) self-cleaning/air-purifying/
antimicrobial coatings and (ii) nano-structured capsules delivering active phases in cosmetics