FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W4309134248> ?p ?o ?g. }

• W4309134248 abstract "Applications running in Trusted Execution Environments (TEEs) commonly use untrusted external services such as host File System. Adversaries may maliciously alter the normal service behavior to trigger subtle application bugs that would have never occurred under correct service operation, causing data leaks and integrity violations. Unfortunately, existing manual protections are incomplete and ad-hoc, whereas formally-verified ones require special expertise. We introduce GateKeeper, a framework to develop mitigations and vulnerability checkers for such attacks by leveraging lightweight formal models of untrusted services. With the attack seen as a violation of a services' functional correctness, GateKeeper takes a novel approach to develop a comprehensive model of a service without requiring formal methods expertise. We harness available testing suites routinely used in service development to tighten the model to known correct service implementation. GateKeeper uses the resulting model to automatically generate (1) a correct-by-construction runtime service validator in C that is linked with a trusted application and guards each service invocation to conform to the model; and (2) a targeted model-driven vulnerability checker for analyzing black-box applications. We evaluate GateKeeper on Intel SGX enclaves. We develop comprehensive models of a POSIX file system and OS synchronization primitives while using thousands of existing test suites to tighten their models to the actual Linux implementations. We generate the validator and integrate it with Graphene-SGX, and successfully protect unmodified Memcached and SQLite with negligible overheads. The generated vulnerability checker detects novel vulnerabilities in the Graphene-SGX protection layer and production applications." @default.
• W4309134248 created "2022-11-23" @default.
• W4309134248 creator A5010920313 @default.
• W4309134248 creator A5022593894 @default.
• W4309134248 creator A5072451450 @default.
• W4309134248 creator A5074210071 @default.
• W4309134248 creator A5083124047 @default.
• W4309134248 creator A5086483584 @default.
• W4309134248 date "2022-11-14" @default.
• W4309134248 modified "2023-10-14" @default.
• W4309134248 title "Securing Access to Untrusted Services From TEEs with GateKeeper" @default.
• W4309134248 doi "https://doi.org/10.48550/arxiv.2211.07185" @default.
• W4309134248 hasPublicationYear "2022" @default.
• W4309134248 type Work @default.
• W4309134248 citedByCount "0" @default.
• W4309134248 crossrefType "posted-content" @default.
• W4309134248 hasAuthorship W4309134248A5010920313 @default.
• W4309134248 hasAuthorship W4309134248A5022593894 @default.
• W4309134248 hasAuthorship W4309134248A5072451450 @default.
• W4309134248 hasAuthorship W4309134248A5074210071 @default.
• W4309134248 hasAuthorship W4309134248A5083124047 @default.
• W4309134248 hasAuthorship W4309134248A5086483584 @default.
• W4309134248 hasBestOaLocation W43091342481 @default.
• W4309134248 hasConcept C110251889 @default.
• W4309134248 hasConcept C111065885 @default.
• W4309134248 hasConcept C111919701 @default.
• W4309134248 hasConcept C136264566 @default.
• W4309134248 hasConcept C136764020 @default.
• W4309134248 hasConcept C162324750 @default.
• W4309134248 hasConcept C199360897 @default.
• W4309134248 hasConcept C26713055 @default.
• W4309134248 hasConcept C2777904410 @default.
• W4309134248 hasConcept C2780378061 @default.
• W4309134248 hasConcept C35292069 @default.
• W4309134248 hasConcept C38652104 @default.
• W4309134248 hasConcept C41008148 @default.
• W4309134248 hasConcept C55439883 @default.
• W4309134248 hasConcept C95713431 @default.
• W4309134248 hasConceptScore W4309134248C110251889 @default.
• W4309134248 hasConceptScore W4309134248C111065885 @default.
• W4309134248 hasConceptScore W4309134248C111919701 @default.
• W4309134248 hasConceptScore W4309134248C136264566 @default.
• W4309134248 hasConceptScore W4309134248C136764020 @default.
• W4309134248 hasConceptScore W4309134248C162324750 @default.
• W4309134248 hasConceptScore W4309134248C199360897 @default.
• W4309134248 hasConceptScore W4309134248C26713055 @default.
• W4309134248 hasConceptScore W4309134248C2777904410 @default.
• W4309134248 hasConceptScore W4309134248C2780378061 @default.
• W4309134248 hasConceptScore W4309134248C35292069 @default.
• W4309134248 hasConceptScore W4309134248C38652104 @default.
• W4309134248 hasConceptScore W4309134248C41008148 @default.
• W4309134248 hasConceptScore W4309134248C55439883 @default.
• W4309134248 hasConceptScore W4309134248C95713431 @default.
• W4309134248 hasLocation W43091342481 @default.
• W4309134248 hasLocation W43091342482 @default.
• W4309134248 hasOpenAccess W4309134248 @default.
• W4309134248 hasPrimaryLocation W43091342481 @default.
• W4309134248 hasRelatedWork W108742494 @default.
• W4309134248 hasRelatedWork W1504172378 @default.
• W4309134248 hasRelatedWork W1558537941 @default.
• W4309134248 hasRelatedWork W2111134484 @default.
• W4309134248 hasRelatedWork W3006477812 @default.
• W4309134248 hasRelatedWork W4232496381 @default.
• W4309134248 hasRelatedWork W4252148547 @default.
• W4309134248 hasRelatedWork W4285261767 @default.
• W4309134248 hasRelatedWork W4382139733 @default.
• W4309134248 hasRelatedWork W2496205912 @default.
• W4309134248 isParatext "false" @default.
• W4309134248 isRetracted "false" @default.
• W4309134248 workType "article" @default.