Comments (8)
SGX shield: https://cps.kaist.ac.kr/papers/ndss17-sgxshield.pdf
from elf-respect.
RYOAN: https://www.cs.utexas.edu/users/witchel/pubs/hunt16osdi-ryoan.pdf
from elf-respect.
SGX-ROP: https://arxiv.org/pdf/1902.03256.pdf
from elf-respect.
Dynamic loading code into SGX (needed to be checked):
- SGXElide: http://web.cse.ohio-state.edu/~lin.3021/file/CGO18.pdf
- DynSGX: https://arxiv.org/pdf/1710.11423.pdf
- Intel Forum: https://software.intel.com/en-us/forums/intel-software-guard-extensions-intel-sgx/topic/738239
- SGXCrypter: http://sites.nyuad.nyu.edu/moma/pdfs/pubs/C33.pdf
- Practical Enclave Malware
from elf-respect.
SGX shield: https://cps.kaist.ac.kr/papers/ndss17-sgxshield.pdf
@lpjlwj @heartever @BlackDiamond1995 I recommend carefully reading Section IV.D of the SGX-Shield paper.
This subsection describes how they isolate memory write so that it will not write to W+X pages, and how they align code to prevent memory writes in gadget form.
Note that SGX-Shield paper does all these changes (SFI and alignment) at the IR level. In general, doing these things at the binary level is difficult. However, the SGX-Shield paper only evaluated their techniques on nbench (https://www.math.utah.edu/~mayer/linux/bmark.html) and HTTPD. So the total number of programs in their evaluation is really small, and the programs are not really that complicated.
My guess is that we can do SFI and alignment on binary code as long as our benchmarks are not too complicate.
from elf-respect.
Dynamic loading code into SGX (needed to be checked):
- SGXElide: http://web.cse.ohio-state.edu/~lin.3021/file/CGO18.pdf
- DynSGX: https://arxiv.org/pdf/1710.11423.pdf
- Intel Forum: https://software.intel.com/en-us/forums/intel-software-guard-extensions-intel-sgx/topic/738239
- SGXCrypter: http://sites.nyuad.nyu.edu/moma/pdfs/pubs/C33.pdf
- Practical Enclave Malware
Deploying an encrypted binary in SGX
Hacking in Darkness: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-lee-jaehyuk.pdf Sec. 2.1
from elf-respect.
SGX-ROP: https://arxiv.org/pdf/1902.03256.pdf
Hacking in Darkness: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-lee-jaehyuk.pdf
The Guardโs Dilemma: Efficient Code-Reuse Attacks Against Intel SGX: https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-biondo.pdf
from elf-respect.
https://docs.google.com/document/d/1gWjg2z-OJg4bDwYtk5CFCw1YKYiCsftvB9dKzgFCtRo/edit?usp=sharing
some related work...
from elf-respect.
Related Issues (8)
- Determine and upload the program we want to experiment with HOT 3
- Determine which memory writes are data leakages
- Check whether Dyninst analysis component can be run in SGX
- Check whether Dyninst rewritten binary can be run within SGX
- Defending against dynamically loading or injecting leaking code into W+X page HOT 8
- Preventing the attacker from redirecting the control flow during runtime if an attacker knows the details of our data-leaking-protection method HOT 7
- Defende against side/covert channels
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from elf-respect.