Trusted Computing: Publications

Exploring the use of Intel SGX for Secure Many−Party Applications

K.A. Küçük‚ A. Paverd‚ A. Martin‚ N. Asokan‚ A. Simpson and R. Ankele

In Proceedings of the 1st Workshop on System Software for Trusted Execution (SysTEX '16). New York‚ NY‚ USA. 2016. ACM.

The theoretical construct of a Trusted Third Party (TTP) has the potential to solve many security and privacy challenges. In particular‚ a TTP is an ideal way to achieve secure multiparty computation—a privacy−enhancing technique in which mutually distrusting participants jointly compute a function over their private inputs without revealing these inputs. Although there exist cryptographic protocols to achieve this‚ their performance often limits them to the two−party case‚ or to a small number of participants. However‚ many real−world applications involve thousands or tens of thousands of participants. Examples of this type of many−party application include privacy−preserving energy metering‚ location−based services‚ and mobile network roaming. Challenging the notion that a trustworthy TTP does not exist‚ recent research has shown how trusted hardware and remote attestation can be used to establish a sufficient level of assurance in a real system such that it can serve as a trustworthy remote entity (TRE). We explore the use of Intel SGX‚ the most recent and arguably most promising trusted hardware technology‚ as the basis for a TRE for many−party applications. Using privacy−preserving energy metering as a case study‚ we design and implement a prototype TRE using SGX‚ and compare its performance to a previous system based on the Trusted Platform Module (TPM). Our results show that even without specialized optimizations‚ SGX provides comparable performance to the optimized TPM system‚ and therefore has significant potential for large−scale many−party applications.

Details about Exploring the use of Intel SGX for Secure Many−Party Applications | BibTeX data for Exploring the use of Intel SGX for Secure Many−Party Applications | DOI (10.1145/3007788.3007793) | Link to Exploring the use of Intel SGX for Secure Many−Party Applications

Privacy−Enhanced Bi−Directional Communication in the Smart Grid using Trusted Computing

Andrew J Paverd‚ Andrew P Martin and Ian Brown

In Fifth IEEE International Conference on Smart Grid Communications (SmartGridComm 2014). 2014.

Details about Privacy−Enhanced Bi−Directional Communication in the Smart Grid using Trusted Computing | BibTeX data for Privacy−Enhanced Bi−Directional Communication in the Smart Grid using Trusted Computing | Download Paverd-SmartGridComm-2014.pdf of Privacy−Enhanced Bi−Directional Communication in the Smart Grid using Trusted Computing | Download Paverd-SmartGridComm-2014-slides.pdf of Privacy−Enhanced Bi−Directional Communication in the Smart Grid using Trusted Computing | DOI (10.1109/SmartGridComm.2014.7007758) | Link to Privacy−Enhanced Bi−Directional Communication in the Smart Grid using Trusted Computing

Security and Privacy in Smart Grid Demand Response Systems

Andrew J Paverd‚ Andrew P Martin and Ian Brown

In Jorge Cuellar, editor, Smart Grid Security. Pages 1−15. Springer International Publishing. 2014.

Details about Security and Privacy in Smart Grid Demand Response Systems | BibTeX data for Security and Privacy in Smart Grid Demand Response Systems | Download  (pdf) of Security and Privacy in Smart Grid Demand Response Systems | DOI (10.1007/978-3-319-10329-7_1) | Link to Security and Privacy in Smart Grid Demand Response Systems

Trustworthy Services Through Attestation

John Lyle

PhD Thesis Department of Computer Science‚ University of Oxford. 2011.

Details about Trustworthy Services Through Attestation | BibTeX data for Trustworthy Services Through Attestation | Download (pdf) of Trustworthy Services Through Attestation

Managing application whitelists in trusted distributed systems

Jun Ho Huh‚ John Lyle‚ Cornelius Namiluko and Andrew Martin

In Future Generation Computer Systems. Vol. In Press‚ Accepted Manuscript. 2010.

Details about Managing application whitelists in trusted distributed systems | BibTeX data for Managing application whitelists in trusted distributed systems | DOI (DOI: 10.1016/j.future.2010.08.014) | Link to Managing application whitelists in trusted distributed systems

Trusted Computing and Provenance: Better Together

John Lyle and Andrew Martin

In Proceedings of the 2nd Workshop on the Theory and Practice of Provenance. Usenix. 2010.

Details about Trusted Computing and Provenance: Better Together | BibTeX data for Trusted Computing and Provenance: Better Together | Download  (pdf) of Trusted Computing and Provenance: Better Together | Download (pdf) of Trusted Computing and Provenance: Better Together

Trustable Remote Verification of Web Services

John Lyle

In Liqun Chen‚ Chris J. Mitchell and Andrew Martin, editors, TRUST. Pages 153−168. Springer. April, 2009.

Details about Trustable Remote Verification of Web Services | BibTeX data for Trustable Remote Verification of Web Services | Download  (pdf) of Trustable Remote Verification of Web Services | Link to Trustable Remote Verification of Web Services

On the Feasibility of Remote Attestation for Web Services

John Lyle and Andrew Martin

In SecureCom09: Proceedings of the International Symposium on Secure Computing. Pages 283−288. IEEE. 2009.

Details about On the Feasibility of Remote Attestation for Web Services | BibTeX data for On the Feasibility of Remote Attestation for Web Services | Download PublicationFile of On the Feasibility of Remote Attestation for Web Services | Download feasibility-ieee.pdf of On the Feasibility of Remote Attestation for Web Services | Link to On the Feasibility of Remote Attestation for Web Services

The Ten Page Introduction to Trusted Computing

Andrew Martin

No. RR−08−11. OUCL. December, 2008.

Details about The Ten Page Introduction to Trusted Computing | BibTeX data for The Ten Page Introduction to Trusted Computing | Download of The Ten Page Introduction to Trusted Computing