Name
Abstract | ||
|---|---|---|
In the light of computational outsourcing and external data storage, data protection and trusted execution become increasingly important. Novel hardware such as Intel's Software Guard extensions (SGX) attempts to provide a solution to protect data and computations from unauthorized access and manipulation, even against attackers with physical access to a machine. However, the current generation of SGX limits the protected memory space that can be efficiently used to 128 MiB, which must be shared between data and binary code. Thus, we propose to use a software product line approach to tailor an application's binary code in such a way that it can be updated during runtime, with the goal to only store relevant features in the protected memory at a given time. We provide a prototypical implementation that enables basic support for loading and unloading features during runtime and evaluate our prototype in terms of execution times against non-adaptive execution.
|
Year | DOI | Venue |
|---|---|---|
2019 | 10.1145/3302333.3302340 | Proceedings of the 13th International Workshop on Variability Modelling of Software-Intensive Systems |
Keywords | Field | DocType |
Intel Software Guard Extensions, Runtime Adaptation, Software Product Lines | Systems engineering,Computer data storage,Computer science,Binary code,Outsourcing,Software,Software product line,Guard (information security),Physical access,Data Protection Act 1998,Operating system | Conference |
ISBN | Citations | PageRank |
978-1-4503-6648-9 | 0 | 0.34 |
References | Authors | |
12 | 3 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Sebastian Krieter | 1 | 85 | 13.81 |
| Tobias Thiem | 2 | 0 | 0.34 |
| Thomas Leich | 3 | 925 | 58.39 |