A framework for application partitioning using trusted execution environments

Atamli-Reineh, Ahmad; Paverd, Andrew; Petracca, Giuseppe; Martin, Andrew P.

doi:10.1002/cpe.4130

Cited by 3 publications

(1 citation statement)

References 58 publications

(98 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The paper by Atamli‐Reineh et al . addresses this problem and presents a novel framework consisting of four overarching types of partitioning schemes through which applications can make use of a trusted execution environment (TEE). The proposed techniques range from coarse‐grained partitioning, in which the whole application is included in a single TEE, to ultra‐fine partitioning, in which each piece of security‐sensitive code and data is protected in an individual TEE.…”

Section: Software Vulnerabilitiesmentioning

confidence: 99%

Applications and techniques in information and network security

Abawajy

Islam

2017

Concurrency and Computation

View full text Add to dashboard Cite

Applications and techniques in information and network security 1. INTRODUCTION In this special issue, eight papers are accepted for publication. These papers collectively address the cybersecurity risks posed by software vulnerabilities and various exploits such as phishing and malware that exploit the vulnerabilities to perpetrate an attack on the systems.The overwhelming growth of Internet and its users is a reality, which has put new thoughts among the research community to devise new ideas for giving coverage to a huge number of people around the globe. The continually increasing reliance on networked communication technology by businesses, the general public and government services, and their role in the critical infrastructure makes it imperative to have security technologies built into them. Cyberspace comprises an interdependent network of information technology infrastructures essential to our economy, security, and way of life. Securing cyberspace was recognized to be one of the great Grand Challenges of the future according to the National Academy of Engineering. However, the increasing scale, complexity, heterogeneity, and dynamism of Internet and distributed computing systems with respect to communication networks, resources, and applications have made such systems brittle, unmanageable, and insecure. Information and network security deals with the operations undertaken to protect and defend networked communication systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation and has become an important research and development area for academia, government, and industry. There is a need to ensure that high-quality solutions that address important and emerging security issues are disseminated timely and widely among the research community.In recent years, Internet security has received renewed interest from a broad range of stakeholders ranging from national governments to corporations and end users of computer systems and the Internet. As a result, Internet security research has been placed high as a national priority. In this challenging environment, there is a need for researchers, from different fields of science and engineering, to model their systems, services, and applications from the perspective of security, robustness, and integrity. As academic research in cyber security has developed over the last twenty or so years, techniques and applications are being developed to be of specific use in these areas such as cryptographic protocols, malicious software, cloud computing, and wireless sensor network security and are still in need of a basic theoretical framework. This special issue aims at compiling the recent advancements as well as to examine the techniques available in the context of information and network security and has addressed the above-mentioned research problems through highquality papers.As this special issue aimed at getting the latest advancements in the areas of information security, network security, and cyber security, the pape...

show abstract

Section: Software Vulnerabilitiesmentioning

confidence: 99%

Applications and techniques in information and network security

Abawajy

Islam

2017

Concurrency and Computation

View full text Add to dashboard Cite

show abstract

Management of SSL Certificates: Through Dynamic Link Libraries

Vargas

Mayorga

Guevara

et al. 2018

Communications in Computer and Information Science

View full text Add to dashboard Cite

TEESlice: Protecting Sensitive Neural Network Models in Trusted Execution Environments When Attackers have Pre-Trained Models

Li,

Zhang,

Yao

et al. 2024

ACM Trans. Softw. Eng. Methodol.

View full text Add to dashboard Cite

Trusted Execution Environments (TEE) are used to safeguard on-device models. However, directly employing TEEs to secure the entire DNN model is challenging due to the limited computational speed. Utilizing GPU can accelerate DNN's computation speed but commercial widely-available GPUs usually lack security protection. To this end, scholars introduce TEE-shielded DNN partition (TSDP), a method that protects privacy-sensitive weights within TEEs and offloads insensitive weights to GPUs. Nevertheless, current methods do not consider the presence of a knowledgeable adversary who can access abundant publicly available pre-trained models and datasets. This paper investigates the security of existing methods against such a knowledgeable adversary and reveals their inability to fulfill their security promises. Consequently, we introduce a novel partition before training strategy, which effectively separates privacy-sensitive weights from other components of the model. Our evaluation demonstrates that our approach can offer full model protection with a computational cost reduced by a factor of 10. In addition to traditional CNN models, we also demonstrate the scalability to large language models. Our approach can compress the private functionalities of the large language model to lightweight slices and achieve the same level of protection as the shielding-whole-model baseline.

show abstract

A framework for application partitioning using trusted execution environments

Cited by 3 publications

References 58 publications

Applications and techniques in information and network security

Applications and techniques in information and network security

Management of SSL Certificates: Through Dynamic Link Libraries

TEESlice: Protecting Sensitive Neural Network Models in Trusted Execution Environments When Attackers have Pre-Trained Models

Contact Info

Product

Resources

About