filmov
tv
COSIC seminar – Sanctum: Towards an Open-Source, Formally-Verified Secure Processor
Показать описание
COSIC seminar – Sanctum: Towards an Open-Source, Formally-Verified Secure Processor – Srini Devadas (Massachusetts Institute of Technology)
Architectural isolation can be used to secure computation on a remote secure processor with a private key where the privileged software is potentially malicious as recently deployed by Intel’s Software Guard Extensions (SGX). This talk will describe the Sanctum secure processor architecture, which offers the same promise as SGX, namely strong provable isolation of software modules running concurrently and sharing resources, but protects against an important class of additional software attacks that infer private information by exploiting resource sharing. We will also briefly describe a verification methodology based on a trusted abstract platform (TAP) that formally models idealized enclaves and a parameterized adversary.
Joint work with Victor Costan, Ilia Lebedev, and the Seshia Group at U. C. Berkeley.
Architectural isolation can be used to secure computation on a remote secure processor with a private key where the privileged software is potentially malicious as recently deployed by Intel’s Software Guard Extensions (SGX). This talk will describe the Sanctum secure processor architecture, which offers the same promise as SGX, namely strong provable isolation of software modules running concurrently and sharing resources, but protects against an important class of additional software attacks that infer private information by exploiting resource sharing. We will also briefly describe a verification methodology based on a trusted abstract platform (TAP) that formally models idealized enclaves and a parameterized adversary.
Joint work with Victor Costan, Ilia Lebedev, and the Seshia Group at U. C. Berkeley.
1:10:39
0:39:05
0:00:59
0:35:00
0:42:14
0:14:04
0:21:37
0:19:41
0:14:49
1:10:24
1:13:52
1:00:13
0:30:53
0:39:59
0:10:48
0:04:37
0:52:38
0:18:35
0:13:19
4:11:32