2017 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2017
DOI: 10.1109/dsn.2017.37
|View full text |Cite
|
Sign up to set email alerts
|

Secure Live Migration of SGX Enclaves on Untrusted Cloud

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
31
0

Year Published

2018
2018
2024
2024

Publication Types

Select...
4
4

Relationship

0
8

Authors

Journals

citations
Cited by 42 publications
(31 citation statements)
references
References 13 publications
0
31
0
Order By: Relevance
“…We cannot directly reuse the memory because it's encryption keys are differently generated by the CPU in its initialization phase and thus the decryption on the updated kernel fails. To support such applications, we need to combine the advanced migration technique [23] into our mechanism.…”
Section: Discussionmentioning
confidence: 99%
“…We cannot directly reuse the memory because it's encryption keys are differently generated by the CPU in its initialization phase and thus the decryption on the updated kernel fails. To support such applications, we need to combine the advanced migration technique [23] into our mechanism.…”
Section: Discussionmentioning
confidence: 99%
“…That is solved by means of a migration key transmitted through secure channels built by leveraging SGX attestation and by a self-destroy approach, which prevents the enclave from being resumed after it was checkpointed. Overall, authors [55] show a negligible performance overhead. Such mechanism could eventually be integrated into our system, towards a globally optimized EPC utilization through the migration of enclaves.…”
Section: Related Workmentioning
confidence: 93%
“…If a VM containing an SGX enclave were migrated using existing VM migration techniques, the enclave would not be migrated because the migration process would not be able to access the EPC. In order to migrate the enclave, an SGX-aware migration mechanism, such as that proposed by Park et al [1] or Gu et al [2] must be used.…”
Section: B Sgx Virtualization and Migrationmentioning
confidence: 99%
“…Secondly, we focused on migrating the persistent state of the enclave. Migrating the data memory of the enclave is an orthogonal challenge that can be solved e.g., using the mechanism proposed by Gu et al [2]. Combining the two approaches would lead to a possibility to migrate enclaves without the need to stop and restart them.…”
Section: Future Workmentioning
confidence: 99%
See 1 more Smart Citation