Title: COMPUTERS & SECURITYImported from Authenticus Search for Journal Publications

Vol. 108

ISSN: 0167-4048

ISI Web of Knowledge - 9 Citations

Scopus - 10 Citations

Authenticus ID: P-00V-WAN

DOI: 10.1016/j.cose.2021.102327

Abstract (EN): With the rising popularity of the cloud, companies lose control of both the hardware and the operating system responsible for hosting their software and data. This means that companies are at risk of losing confidential data when these are utilized in components controlled by a third-party cloud vendor. Secure enclaves can help solve this problem by creating a secure environment where code can be executed securely, guaranteeing that no unwanted parties read or modify the data inside this secure environment. While the use of secure enclaves has been focused on small footprints software, such as the implementation of trusted computing base for distributed protocols, we analyze the strengths and shortcoming of current tools in an effort to further expand the applicability of their use. Given the importance of web servers and their inherent greater exposure to attacks, we explore the hardening of Apache web server through the use of secure enclaves. This was accomplished by making the necessary modifications to further protect its private key from both the operating system and hypervisor. We also provide a performance assessment to quantify the overhead associated with the use of secure enclaves, namely, Intel SGX.

Language: English

Type (Professor's evaluation): Scientific

No. of pages: 19