Hyunyoung Oh scite author profile

Hyunyoung Oh

5Publications

53Citation Statements Received

89Citation Statements Given

How they've been cited

How they cite others

183

Affiliations

Yonsei University, Seoul National University, Gachon University

Publications

Order By: Most citations

TRUSTORE: Side-Channel Resistant Storage for SGX using Intel Hybrid CPU-FPGA

Ahmad

Park

et al. 2020

View full text Add to dashboard Cite

Intel SGX is a security solution promising strong and practical security guarantees for trusted computing. However, recent reports demonstrated that such security guarantees of SGX are broken due to access pattern based side-channel attacks, including page fault, cache, branch prediction, and speculative execution. In order to stop these side-channel attackers, Oblivious RAM (ORAM) has gained strong attention from the security community as it provides cryptographically proven protection against access pattern based side-channels. While several proposed systems have successfully applied ORAM to thwart side-channels, those are severely limited in performance and its scalability due to notorious performance issues of ORAM. This paper presents TrustOre, addressing these issues that arise when using ORAM with Intel SGX. TrustOre leverages an external device, FPGA, to implement a trusted storage service within a completed isolated environment secure from side-channel attacks. TrustOre tackles several challenges in achieving such a goal: extending trust from SGX to FPGA without imposing architectural changes, providing a verifiably-secure connection between SGX applications and FPGA, and seamlessly supporting various access operations from SGX applications to FPGA. We implemented TrustOre on the commodity Intel Hybrid CPU-FPGA architecture. Then we evaluated with three state-of-the-art ORAM-based SGX applications, ZeroTrace, Obliviate, and Obfuscuro, as well as an endto-end key-value store application. According to our evaluation, TrustOre-based applications outperforms ORAM-based original applications ranging from 10× to 43×, while also showing far better scalability than ORAM-based ones. We emphasize that since TrustOre can be deployed as a simple plug-in to SGX machine's PCIe slot, it is readily used to thwart side-channel attacks in SGX, arguably one of the most cryptic and critical security holes today. CCS CONCEPTS • Security and privacy → Side-channel analysis and countermeasures; Security services; Security protocols.

show abstract

MeetGo: A Trusted Execution Environment for Remote Applications on FPGA

Nam

Jeon

et al. 2021

IEEE Access

View full text Add to dashboard Cite

Remote computing has emerged as a trendy computing model that enables users to process an immense number of computations efficiently on the remote server where the necessary data and highperformance computing power are provisioned. Unfortunately, despite such an advantage, this computing model suffers from insider threats that are committed by adversarial administrators of remote servers who attempt to steal or corrupt users' private data. These security threats are somewhat innate to remote computing in that there is no means to control administrators' unlimited data access. In this paper, we present our novel hardware-centric solution, called MeetGo, to address the intrinsic threats to remote computing. MeetGo is a field-programmable gate array (FPGA)-based trusted execution environment (TEE) that aims to operate independently of the host system architecture. To exhibit the ability and effectiveness of MeetGo as a TEE ensuring secure remote computing, we have built two concrete applications: cryptocurrency wallet and GPGPU. MeetGo provides a trust anchor for these applications that enable their users to trade cryptocurrency or to run a GPGPU program server on a remote server while staying safe from threats by insiders. Our experimental results clearly demonstrate that MeetGo incurs only a negligible performance overhead to the applications.INDEX TERMS Field-programmable gate array (FPGA), remote computing, remote attestation, secure communication channel, trusted execution environment (TEE)

show abstract

ActiMon: Unified JOP and ROP Detection With Active Function Lists on an SoC FPGA

Yang

Cho

et al. 2019

IEEE Access

View full text Add to dashboard Cite

Real-Time Anomalous Branch Behavior Inference with a GPU-inspired Engine for Machine Learning Models

Choe

et al. 2019

View full text Add to dashboard Cite

Sources and uncertainties of future global drought risk with ISIMIP2b climate scenarios and socioeconomic indicators

Kim²,

Mehboob³

et al. 2023

Science of The Total Environment

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Hyunyoung Oh

TRUSTORE: Side-Channel Resistant Storage for SGX using Intel Hybrid CPU-FPGA

MeetGo: A Trusted Execution Environment for Remote Applications on FPGA

ActiMon: Unified JOP and ROP Detection With Active Function Lists on an SoC FPGA

Real-Time Anomalous Branch Behavior Inference with a GPU-inspired Engine for Machine Learning Models

Sources and uncertainties of future global drought risk with ISIMIP2b climate scenarios and socioeconomic indicators

Contact Info

Product

Resources

About