SGX-Tor: A Secure and Practical Tor Anonymity Network With SGX Enclaves

Kim, Seong–Min; Han, Juhyeng; Ha, Jaehyeong; Kim, Taesoo; Han, Dongsu

doi:10.1109/tnet.2018.2868054

Cited by 35 publications

(15 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Nodes broadcast or forward the proposed block on the P2P network in the consensus phase. Currently, we have seen the application of SGX for network communications, especially the SGX-based anonymity network [18], [19]. However, we have not seen any related attempts involving SGX for network optimization in the blockchain network, and we would like to point out that it is still a viable direction.…”

Section: Background On Blockchainmentioning

confidence: 99%

“…Therefore, SGX suffers from side-channel attacks, in which the attacker observes the shared resources to obtain the control flow and the data access mode of the enclave program to infer the sensitive information in the enclave. Some side-channel attacks on SGX have exploded recently [19]. Although most of the sidechannel attacks are relatively difficult to be exploited, sufficient profit may drive attackers to attack the SGXbased platforms.…”

Section: B Advantages and Disadvantages Of Sgxmentioning

confidence: 99%

See 1 more Smart Citation

When Blockchain Meets SGX: An Overview, Challenges, and Open Issues

Bao¹,

Wang

Shi

et al. 2020

IEEE Access

View full text Add to dashboard Cite

As a decentralized, public, and digital ledger technology in Peer-to-Peer network, blockchain has received much attention from various fields, including finance, healthcare, supply chain, etc. However, some challenges (e.g., scalability, privacy, and security issues) severely affects the wide adoption of blockchain technology. Recently, Intel software guard extensions (SGX), as new trusted computing technologies, have provided a new solution to the above challenges in the blockchain area. Although many studies have focused on using SGX technology to enhance their schemes in the blockchain areas, no comprehensive survey has systematically analyzed and delineated these studies. This paper is the first to systematically discuss the application status of SGX in the blockchain area. In this paper, we study the scheme designs, advantages, and disadvantages of the existing works using a six-layer hierarchical structure of the blockchain. We also summarize the functions of SGX and formally analyze the advantages and disadvantages of SGX. Finally, we review the remaining challenges and present a list of possible directions for future research.

show abstract

Section: Background On Blockchainmentioning

confidence: 99%

Section: B Advantages and Disadvantages Of Sgxmentioning

confidence: 99%

When Blockchain Meets SGX: An Overview, Challenges, and Open Issues

Bao¹,

Wang

Shi

et al. 2020

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Most OFLs make some effort to narrow the syscall interface by only implementing certain syscalls. Minibox [27], SGX-Tor [21] and InkTag [12] handle part of system services with special care. InkTag has an application-level library to translate read/write syscalls into operations on memory mapped files.…”

Section: A Documentation-based Analysismentioning

confidence: 99%

Emilia: Catching Iago in Legacy Code

Cui¹,

Zhao²,

Lie³

2021

Proceedings 2021 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

There has been interest in mechanisms that enable the secure use of legacy code to implement trusted code in a Trusted Execution Environment (TEE), such as Intel SGX. However, because legacy code generally assumes the presence of an operating system, this naturally raises the spectre of Iago attacks on the legacy code. We observe that not all legacy code is vulnerable to Iago attacks and that legacy code must use return values from system calls in an unsafe way to have Iago vulnerabilities. Based on this observation, we develop Emilia, which automatically detects Iago vulnerabilities in legacy applications by fuzzing applications using system call return values. We use Emilia to discover 51 Iago vulnerabilities in 17 applications, and find that Iago vulnerabilities are widespread and common. We conduct an in-depth analysis of the vulnerabilities we found and conclude that while common, the majority (82.4%) can be mitigated with simple, stateless checks in the system call forwarding layer, while the rest are best fixed by finding and patching them in the legacy code. Finally, we study and evaluate different trade-offs in the design of Emilia.

show abstract

“…There can also be availability failures as the platform owner can (maliciously) terminate an enclave. SGX can also be susceptible to side-channel attacks [34] and single point attacks. In section V-D we discuss why these drawbacks are not a problem in FLOCK.…”

Section: Trusted Execution Environmentsmentioning

confidence: 99%

FLOCK: Fast, Lightweight, and Scalable Allocation for Decentralized Services on Blockchain

Keizer

Ascigil

Psaras

et al. 2021

2021 IEEE International Conference on Blockchain and Cryptocurrency (ICBC)

View full text Add to dashboard Cite

Many decentralised services have recently emerged on top of blockchain, offering benefits like privacy, and allowing any node in the network to share its resources. In order to be a competitive alternative to their central counterparts, their performance needs to match up. Specifically, service allocation remains a performance bottleneck for many decentralised services.In this paper we present FLOCK, an allocation system which is highly scalable, fast, and lightweight. Furthermore, it allows nodes to indicate their preference for clients/sellers without needing to submit bids by using stable matching algorithms. We decouple the price discovery and outsource this function to a smart contract on the blockchain.Additionally, another smart contract is used to orchestrate the allocation and take care of service discovery, while trusted execution environments securely compute allocation solutions, and off-chain payment networks are used to send rewards.Evaluation of FLOCK shows that gas costs are manageable and improve upon other solutions which leverage auctions, and that our instance of the stable matching algorithm greatly improves run-time and throughput over auction counterparts. Finally, our discussion outlines practical improvements to further increase performance.

show abstract

SGX-Tor: A Secure and Practical Tor Anonymity Network With SGX Enclaves

Cited by 35 publications

References 27 publications

When Blockchain Meets SGX: An Overview, Challenges, and Open Issues

When Blockchain Meets SGX: An Overview, Challenges, and Open Issues

Emilia: Catching Iago in Legacy Code

FLOCK: Fast, Lightweight, and Scalable Allocation for Decentralized Services on Blockchain

Contact Info

Product

Resources

About