Name
Title | ||
|---|---|---|
Intel® Software Guard Extensions (Intel® SGX) Architecture for Oversubscription of Secure Memory in a Virtualized Environment |
Abstract | ||
|---|---|---|
As workloads and data move to the cloud, it is essential that software writers are able to protect their applications from untrusted hardware, systems software, and co-tenants. Intel® Software Guard Extensions (SGX) enables a new mode of execution that is protected from attacks in such an environment with strong confidentiality, integrity, and replay protection guarantees. Though SGX supports memory oversubscription via paging, virtualizing the protected memory presents a significant challenge to Virtual Machine Monitor (VMM) writers and comes with a high performance overhead. This paper introduces SGX Oversubscription Extensions that add additional instructions and virtualization support to the SGX architecture so that cloud service providers can oversubscribe secure memory in a less complex and more performant manner. |
Year | DOI | Venue |
|---|---|---|
2017 | 10.1145/3092627.3092634 | HASP@ISCA |
Field | DocType | ISBN |
Virtualization,Architecture,Computer science,Hypervisor,Memory management,Software,Paging,Guard (information security),Operating system,Cloud computing | Conference | 978-1-4503-5266-6 |
Citations | PageRank | References |
4 | 0.40 | 2 |
Authors | ||
8 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Somnath Chakrabarti | 1 | 4 | 0.40 |
| Rebekah Leslie-Hurd | 2 | 8 | 0.88 |
| Mona Vij | 3 | 36 | 4.51 |
| Frank McKeen | 4 | 361 | 14.76 |
| Carlos V. Rozas | 5 | 359 | 14.72 |
| Dror Caspi | 6 | 8 | 0.88 |
| Ilya Alexandrovich | 7 | 354 | 14.27 |
| Ittai Anati | 8 | 40 | 1.96 |