{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,4]],"date-time":"2026-03-04T16:39:57Z","timestamp":1772642397506,"version":"3.50.1"},"publisher-location":"Cham","reference-count":25,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783030589851","type":"print"},{"value":"9783030589868","type":"electronic"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-58986-8_3","type":"book-chapter","created":{"date-parts":[[2020,9,13]],"date-time":"2020-09-13T12:02:13Z","timestamp":1599998533000},"page":"32-47","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["On the Suitability of Using SGX for Secure Key Storage in the Cloud"],"prefix":"10.1007","author":[{"given":"Joakim","family":"Brorsson","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Pegah Nikbakht","family":"Bideh","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alexander","family":"Nilsson","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Martin","family":"Hell","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,9,14]]},"reference":[{"key":"3_CR1","unstructured":"Arnautov, S., et al.: SCONE: secure Linux Containers with Intel SGX. In: OSDI, pp. 689\u2013704 (2016)"},{"key":"3_CR2","doi-asserted-by":"crossref","unstructured":"Braz, F.A., Fernandez, E.B., VanHilst, M.: Eliciting security requirements through misuse activities. In: 2008 19th International Workshop on Database and Expert Systems Applications, pp. 328\u2013333. IEEE (2008)","DOI":"10.1109\/DEXA.2008.101"},{"key":"3_CR3","doi-asserted-by":"crossref","unstructured":"Callan, R., Popovic, N., Daruna, A., Pollmann, E., Zajic, A., Prvulovic, M.: Comparison of electromagnetic side-channel energy available to the attacker from different computer systems. In: IEEE International Symposium on Electromagnetic Compatibility, vol. 2015, pp. 219\u2013223. IEEE, September 2015","DOI":"10.1109\/ISEMC.2015.7256162"},{"key":"3_CR4","unstructured":"Costan, V., Devadas, S.: Intel SGX explained. IACR Cryptology ePrint Archive 2016 086, 1\u2013118 (2016)"},{"issue":"2","key":"3_CR5","doi-asserted-by":"publisher","first-page":"95","DOI":"10.1007\/s13389-015-0100-7","volume":"5","author":"D Genkin","year":"2015","unstructured":"Genkin, D., Pipman, I., Tromer, E.: Get your hands off my laptop: physical side-channel key-extraction attacks on PCs: extended version. J. Cryptogr. Eng. 5(2), 95\u2013112 (2015)","journal-title":"J. Cryptogr. Eng."},{"issue":"1","key":"3_CR6","doi-asserted-by":"crossref","first-page":"321","DOI":"10.46586\/tches.v2020.i1.321-347","volume":"2020","author":"T Huo","year":"2019","unstructured":"Huo, T., et al.: BlueThunder: a 2-level directional predictor based side-channel attack against SGX. IACR Trans. Cryptogr. Hardw. Embed. Syst. 2020(1), 321\u2013347 (2019)","journal-title":"IACR Trans. Cryptogr. Hardw. Embed. Syst."},{"key":"3_CR7","unstructured":"ISO\/IEC 17825:2016: Information technology \u2013 security techniques \u2013 testing methods for the mitigation of non-invasive attack classes against cryptographic modules (2016)"},{"key":"3_CR8","unstructured":"ISO\/IEC 19790:2012: Information technology \u2013 security techniques \u2013 security requirements for cryptographic modules (2012)"},{"key":"3_CR9","unstructured":"ISO\/IEC 24759:2017: Information technology \u2013 security techniques \u2013 test requirements for cryptographic modules (2017)"},{"key":"3_CR10","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1016\/j.jnca.2016.05.010","volume":"71","author":"MA Khan","year":"2016","unstructured":"Khan, M.A.: A survey of security issues for cloud computing. J. Netw. Comput. Appl. 71, 11\u201329 (2016)","journal-title":"J. Netw. Comput. Appl."},{"key":"3_CR11","unstructured":"Lindell, Y.: The security of intel SGX for key protection and data privacy applications. Technical report (2018). https:\/\/cdn2.hubspot.net\/hubfs\/1761386\/Unbound_Docs_\/security-of-intelsgx-key-protection-data-privacy-apps.pdf"},{"key":"3_CR12","doi-asserted-by":"crossref","unstructured":"Mokhtar, S.B., Boutet, A., Felber, P., Pasin, M., Pires, R., Schiavoni, V.: X-search: revisiting private web search using intel SGX. In: Proceedings of the 18th ACM\/IFIP\/USENIX Middleware Conference, pp. 198\u2013208 (2017)","DOI":"10.1145\/3135974.3135987"},{"key":"3_CR13","unstructured":"National Institute of Standards and Technology: Fips 140\u20133: Security requirements for cryptographic modules (2018)"},{"key":"3_CR14","unstructured":"Nilsson, A., Nikbakht Bideh, P., Brorsson, J.: A survey of published attacks on intel SGX. Technical report (2020). http:\/\/lup.lub.lu.se\/record\/a6d6575f-ac4f-466f-8582-48e1fe48b50c"},{"key":"3_CR15","unstructured":"NIST: SP 800\u2013140F(draft): CMVP approved non-invasive attack mitigation test metrics: CMVP validation authority updates to ISO\/IEC 24759:2014(E) (2019)"},{"key":"3_CR16","doi-asserted-by":"crossref","unstructured":"Priebe, C., Vaswani, K., Costa, M.: EnclaveDB: a secure database using SGX. In: Proceedings - IEEE Symposium on Security and Privacy, vol. 2018, pp. 264\u2013278, May 2018","DOI":"10.1109\/SP.2018.00025"},{"key":"3_CR17","doi-asserted-by":"crossref","unstructured":"Ristenpart, T., Tromer, E., Shacham, H., Savage, S.: Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds. In: Proceedings of the 16th ACM Conference on Computer and Communications Security, pp. 199\u2013212. ACM (2009)","DOI":"10.1145\/1653662.1653687"},{"key":"3_CR18","unstructured":"Saab, S., Rohatgi, P., Hampel, C.: Side-channel protections for cryptographic instruction set extensions. IACR Cryptology ePrint Archive 2016, 700 (2016)"},{"key":"3_CR19","doi-asserted-by":"crossref","unstructured":"Schuster, F., et al.: VC3: trustworthy data analytics in the cloud using SGX. In: 2015 IEEE Symposium on Security and Privacy, vol. 2015, pp. 38\u201354. IEEE, July 2015","DOI":"10.1109\/SP.2015.10"},{"issue":"3","key":"3_CR20","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2856126","volume":"48","author":"D Sgandurra","year":"2016","unstructured":"Sgandurra, D., Lupu, E.: Evolution of attacks, threat models, and solutions for virtualized systems. ACM Comput. Surv. (CSUR) 48(3), 1\u201338 (2016)","journal-title":"ACM Comput. Surv. (CSUR)"},{"key":"3_CR21","doi-asserted-by":"crossref","unstructured":"Shinde, S., Chua, Z.L., Narayanan, V., Saxena, P.: Preventing your faults from telling your secrets: defenses against pigeonhole attacks. arxiv.org (2015)","DOI":"10.1145\/2897845.2897885"},{"issue":"1","key":"3_CR22","doi-asserted-by":"publisher","first-page":"34","DOI":"10.1007\/s00766-004-0194-4","volume":"10","author":"G Sindre","year":"2005","unstructured":"Sindre, G., Opdahl, A.L.: Eliciting security requirements with misuse cases. Requir. Eng. 10(1), 34\u201344 (2005)","journal-title":"Requir. Eng."},{"key":"3_CR23","doi-asserted-by":"crossref","unstructured":"Van Schaik, S., Minkin, M., Kwong, A., Genkin, D., Yarom, Y.: CacheOut: Leaking Data on Intel CPUs via Cache Evictions, p. 16 (2020). cacheoutattack.com","DOI":"10.1109\/SP40001.2021.00064"},{"key":"3_CR24","unstructured":"Weisse, O., et al.: Foreshadow-NG: breaking the virtual memory abstraction with transient out-of-order execution. In: Proceedings of 27th USENIX Security Symposium (2018)"},{"key":"3_CR25","doi-asserted-by":"publisher","first-page":"53","DOI":"10.1016\/j.cose.2019.03.010","volume":"84","author":"W Xiong","year":"2019","unstructured":"Xiong, W., Lagerstr\u00f6m, R.: Threat modeling-a systematic literature review. Comput. Secur. 84, 53\u201369 (2019)","journal-title":"Comput. Secur."}],"container-title":["Lecture Notes in Computer Science","Trust, Privacy and Security in Digital Business"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-58986-8_3","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,11,18]],"date-time":"2022-11-18T02:24:32Z","timestamp":1668738272000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-030-58986-8_3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030589851","9783030589868"],"references-count":25,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-58986-8_3","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"14 September 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"TrustBus","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Trust and Privacy in Digital Business","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Bratislava","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Slovakia","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2020","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 September 2020","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"17 September 2020","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"17","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"trustbus2020","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/www.dexa.org\/trustbus2020","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"28","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"11","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"39% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3.5","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2.5","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"The conference was held virtually due to the COVID-19 pandemic.","order":10,"name":"additional_info_on_review_process","label":"Additional Info on Review Process","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}