Projects per year
Abstract
Our contribution is twofold. First, we provide a detailed security evaluation of vHSMs using the FIPS 140–3 standard. Second, after concluding that the standard is designed for stand-alone rather than virtual systems, we propose a supplementary threat model, which considers threats from different actors separately. This model allows for different levels of trust in actors with different capabilities and can thus be used to assess which parts of FIPS 140--3 that should be considered for a specific attacker.
Using FIPS 140--3 in combination with the threat model, we find that SGX enclaves provide sufficient protection against a large part of the potential actors in the cloud. Thus, depending on the threat model, SGX can be a helpful tool for providing secure storage for virtualized services.
Original language | English |
---|---|
Title of host publication | Lecture Notes in Computer Science |
Publisher | Springer Science and Business Media B.V. |
Pages | 32-47 |
Volume | 12395 |
ISBN (Print) | 978-303058985-1 |
DOIs | |
Publication status | Published - 2020 |
Event | 17th International Conference on Trust, Privacy and Security in Digital Business, TrustBus2020 - Bratislava, Slovakia Duration: 2020 Sept 14 → 2020 Sept 17 |
Conference
Conference | 17th International Conference on Trust, Privacy and Security in Digital Business, TrustBus2020 |
---|---|
Country/Territory | Slovakia |
City | Bratislava |
Period | 2020/09/14 → 2020/09/17 |
Subject classification (UKÄ)
- Communication Systems
- Other Computer and Information Science
Free keywords
- SGX
- FIPS
- Trusted Computing
- Enclaves
- HSM
Fingerprint
Dive into the research topics of 'On the Suitability of Using SGX for Secure Key Storage in the Cloud'. Together they form a unique fingerprint.Projects
- 2 Finished
-
SMARTY: Säkra mjukvaruuppdateringar för den smarta staden
Hell, M. (PI), Magnusson, B. (PI), Gehrmann, C. (CoI), Paladi, N. (Researcher), Karlsson, L. (Researcher), Sönnerup, J. (Researcher), Johnsson, B. A. (Researcher), Hedin, G. (Researcher), Nordahl, M. (Researcher), Pagnin, E. (Researcher), Kundu, R. (Researcher), Åkesson, A. (Researcher), Stankovski Wagner, P. (Researcher) & Ramezanian, S. (Researcher)
Swedish Foundation for Strategic Research, SSF
2018/03/01 → 2024/12/31
Project: Research
-
Side channels on software implementations of post-quantum cryptographic algorithms
Nilsson, A. (Researcher), Johansson, T. (Supervisor) & Stankovski Wagner, P. (Assistant supervisor)
2017/09/01 → 2023/12/31
Project: Dissertation