Abstract
Threats to data processing in the cloud computing environment are increasing with emerging cloud applications. Intel Software Guard Extensions (SGX) implements a Trusted Execution Environment (TEE) through hardware-based isolation, which can enhance the security of cloud applications by providing a separate secure space that does not reveal its interior. A trusted memory area isolated by SGX, so-called enclave, protects the confidential code and data from any other software, including highly privileged system software. However, the adversary also benefits from isolation by inserting malicious code into the enclave where the system cannot detect it. Existing studies suggest various measures to deal with enclave malware, but these are based on an underlying assumption that the system must be trusted, which does not apply to the semi-honest cloud platform. To this end, we propose a novel method, named Interclave, that protects the system from enclave malware in the cloud computing environment without trusting any component other than the intermediate enclave. Interclave forces every ECALL and OCALL of a suspicious enclave to be executed through an intermediate enclave. This prevents the malicious behavior of enclave malware such as code-reuse attacks that modify the stack or register values associated with the program's execution address. Interclave stores and restores all stack and register values before and after the execution of the suspicious enclave, ensuring the integrity of these values. Our implementation is done with slight code modifications which occupy only a little storage capacity without complicated hardware changes.
Original language | English |
---|---|
Title of host publication | Proceedings - 2021 IEEE International Conference on Big Data and Smart Computing, BigComp 2021 |
Editors | Herwig Unger, Jinho Kim, U Kang, Chakchai So-In, Junping Du, Walid Saad, Young-guk Ha, Christian Wagner, Julien Bourgeois, Chanboon Sathitwiriyawong, Hyuk-Yoon Kwon, Carson Leung |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Pages | 226-232 |
Number of pages | 7 |
ISBN (Electronic) | 9781728189246 |
DOIs | |
Publication status | Published - 2021 Jan |
Event | 2021 IEEE International Conference on Big Data and Smart Computing, BigComp 2021 - Jeju Island, Korea, Republic of Duration: 2021 Jan 17 → 2021 Jan 20 |
Publication series
Name | Proceedings - 2021 IEEE International Conference on Big Data and Smart Computing, BigComp 2021 |
---|
Conference
Conference | 2021 IEEE International Conference on Big Data and Smart Computing, BigComp 2021 |
---|---|
Country/Territory | Korea, Republic of |
City | Jeju Island |
Period | 21/1/17 → 21/1/20 |
Bibliographical note
Publisher Copyright:© 2021 IEEE.
Keywords
- Enclave malware
- Intel SGX
- Semi-honest cloud platform
ASJC Scopus subject areas
- Artificial Intelligence
- Computer Science Applications
- Computer Vision and Pattern Recognition
- Information Systems
- Signal Processing
- Information Systems and Management