{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T13:52:42Z","timestamp":1743083562416,"version":"3.40.3"},"publisher-location":"Cham","reference-count":36,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031459320"},{"type":"electronic","value":"9783031459337"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-3-031-45933-7_2","type":"book-chapter","created":{"date-parts":[[2023,11,20]],"date-time":"2023-11-20T09:02:37Z","timestamp":1700470957000},"page":"23-41","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["DomainIsolation: Lightweight Intra-enclave Isolation for\u00a0Confidential Virtual Machines"],"prefix":"10.1007","author":[{"given":"Wenwen","family":"Ruan","sequence":"first","affiliation":[]},{"given":"Wenhao","family":"Wang","sequence":"additional","affiliation":[]},{"given":"Shuang","family":"Liu","sequence":"additional","affiliation":[]},{"given":"Ran","family":"Duan","sequence":"additional","affiliation":[]},{"given":"Shoumeng","family":"Yan","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2023,11,21]]},"reference":[{"unstructured":"Enarx: Confidential computing with webassembly. https:\/\/github.com\/enarx\/enarx\/. Accessed 28 Mar 2023","key":"2_CR1"},{"unstructured":"Webassembly micro runtime. https:\/\/github.com\/bytecodealliance\/wasm-micro-runtime\/. Accessed 13 Oct 2022","key":"2_CR2"},{"unstructured":"Lighttpd (2021). https:\/\/www.lighttpd.net","key":"2_CR3"},{"unstructured":"Redis (2022). https:\/\/redis.io","key":"2_CR4"},{"unstructured":"Alves, T., Felton, D.: Trustzone: integrated hardware and software security. White paper (2004)","key":"2_CR5"},{"unstructured":"ARM: Arm Confidential Compute Architecture (2020). https:\/\/www.arm.com\/why-arm\/architecture\/security-features\/arm-confidential-compute-architecture","key":"2_CR6"},{"unstructured":"Bell, D.E., LaPadula, L.J.: Secure computer systems: mathematical foundations. Technical report, MITRE CORP, Bedford, MA (1973)","key":"2_CR7"},{"unstructured":"bytecodealliance: wasmtime. https:\/\/github.com\/bytecodealliance\/wasmtime","key":"2_CR8"},{"unstructured":"cesanta: mongoose. https:\/\/github.com\/cesanta\/mongoose\/tree\/6.15\/","key":"2_CR9"},{"doi-asserted-by":"crossref","unstructured":"Cooper, B.F., Silberstein, A., Tam, E., Ramakrishnan, R., Sears, R.: Benchmarking cloud serving systems with YCSB. In: Proceedings of the 1st ACM Symposium on Cloud Computing, pp. 143\u2013154 (2010)","key":"2_CR10","DOI":"10.1145\/1807128.1807152"},{"issue":"5\u20136","key":"2_CR11","first-page":"335","volume":"60","author":"D Gruss","year":"2018","unstructured":"Gruss, D.: Software-based microarchitectural attacks. IT-Inf. Technol. 60(5\u20136), 335\u2013341 (2018)","journal-title":"IT-Inf. Technol."},{"issue":"10","key":"2_CR12","first-page":"1598","volume":"70","author":"J Gu","year":"2020","unstructured":"Gu, J., et al.: Enclavisor: a hardware-software co-design for enclaves on untrusted cloud. IEEE Trans. Comput. 70(10), 1598\u20131611 (2020)","journal-title":"IEEE Trans. Comput."},{"unstructured":"Gu, J., Zhu, B., Li, M., Li, W., Xia, Y., Chen, H.: A hardware-software co-design for efficient intra-enclave isolation. In: 31st USENIX Security Symposium (USENIX Security 2022), pp. 3129\u20133145 (2022)","key":"2_CR13"},{"issue":"5","key":"2_CR14","doi-asserted-by":"publisher","first-page":"91","DOI":"10.1145\/1506409.1506429","volume":"52","author":"JA Halderman","year":"2009","unstructured":"Halderman, J.A., et al.: Lest we remember: cold-boot attacks on encryption keys. Commun. ACM 52(5), 91\u201398 (2009)","journal-title":"Commun. ACM"},{"doi-asserted-by":"crossref","unstructured":"Hunt, G.D., et al.: Confidential computing for openpower. In: Proceedings of the Sixteenth European Conference on Computer Systems, pp. 294\u2013310 (2021)","key":"2_CR15","DOI":"10.1145\/3447786.3456243"},{"unstructured":"HyperEnclave: atc22-ae. https:\/\/github.com\/HyperEnclave\/atc22-ae","key":"2_CR16"},{"unstructured":"Intel: Intel Trust Domain Extensions (2020). https:\/\/software.intel.com\/content\/dam\/develop\/external\/us\/en\/documents\/tdxwhitepaper-v4.pdf","key":"2_CR17"},{"unstructured":"Jia, Y., et al.: HyperEnclave: an open and cross-platform trusted execution environment. In: 2022 USENIX Annual Technical Conference (USENIX ATC 2022), pp. 437\u2013454 (2022)","key":"2_CR18"},{"unstructured":"Kaplan, D., Powell, J., Woller, T.: AMD memory encryption. White paper (2016)","key":"2_CR19"},{"doi-asserted-by":"crossref","unstructured":"Kocher, P., et al.: Spectre attacks: exploiting speculative execution. In: 2019 IEEE Symposium on Security and Privacy (SP), pp. 1\u201319. IEEE (2019)","key":"2_CR20","DOI":"10.1109\/SP.2019.00002"},{"doi-asserted-by":"crossref","unstructured":"Lee, D., Kohlbrenner, D., Shinde, S., Asanovi\u0107, K., Song, D.: Keystone: an open framework for architecting trusted execution environments. In: Proceedings of the Fifteenth European Conference on Computer Systems, pp. 1\u201316 (2020)","key":"2_CR21","DOI":"10.1145\/3342195.3387532"},{"doi-asserted-by":"crossref","unstructured":"Markettos, A.T., et al.: Thunderclap: exploring vulnerabilities in operating system IOMMU protection via DMA from untrustworthy peripherals (2019)","key":"2_CR22","DOI":"10.14722\/ndss.2019.23194"},{"unstructured":"Mayer, U.F.: Linux\/Unix nbench (2017). https:\/\/www.math.utah.edu\/mayer\/linux\/bmark.html","key":"2_CR23"},{"doi-asserted-by":"crossref","unstructured":"McKeen, F., et al.: Innovative instructions and software model for isolated execution. Hasp Isca 10(1) (2013)","key":"2_CR24","DOI":"10.1145\/2487726.2488368"},{"issue":"2","key":"2_CR25","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3224423","volume":"2","author":"O Oleksenko","year":"2018","unstructured":"Oleksenko, O., Kuvaiskii, D., Bhatotia, P., Felber, P., Fetzer, C.: Intel MPX explained: a cross-layer analysis of the intel MPX system stack. Proc. ACM Measur. Anal. Comput. Syst. 2(2), 1\u201330 (2018)","journal-title":"Proc. ACM Measur. Anal. Comput. Syst."},{"unstructured":"OpenSSL: OpenSSL. https:\/\/www.openssl.org\/","key":"2_CR26"},{"unstructured":"OpenSSL: OpenSSL-1.0.1e. https:\/\/ftp.openssl.org\/source\/old\/1.0.1\/openssl-1.0.1e.tar.gz","key":"2_CR27"},{"doi-asserted-by":"crossref","unstructured":"Park, J., Kang, N., Kim, T., Kwon, Y., Huh, J.: Nested enclave: supporting fine-grained hierarchical isolation with SGX. In: 2020 ACM\/IEEE 47th Annual International Symposium on Computer Architecture (ISCA), pp. 776\u2013789. IEEE (2020)","key":"2_CR28","DOI":"10.1109\/ISCA45697.2020.00069"},{"doi-asserted-by":"crossref","unstructured":"Shen, Y., et al.: Occlum: secure and efficient multitasking inside a single enclave of Intel SGX. In: Proceedings of the Twenty-Fifth International Conference on Architectural Support for Programming Languages and Operating Systems, pp. 955\u2013970 (2020)","key":"2_CR29","DOI":"10.1145\/3373376.3378469"},{"unstructured":"Tsai, C.C., Porter, D.E., Vij, M.: Graphene-SGX: a practical library OS for unmodified applications on SGX. In: 2017 USENIX Annual Technical Conference (USENIXATC 2017), pp. 645\u2013658 (2017)","key":"2_CR30"},{"doi-asserted-by":"crossref","unstructured":"Wang, H., et al.: Towards memory safe enclave programming with rust-SGX. Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security (2019)","key":"2_CR31","DOI":"10.1145\/3319535.3354241"},{"unstructured":"Wang, W., Liu, W., Chen, H., Wang, X., Tian, H., Lin, D.: Trust beyond border: lightweight, verifiable user isolation for protecting in-enclave services. IEEE Trans. Dependable Secure Comput. (2021)","key":"2_CR32"},{"unstructured":"Wikipedia: Heartbleed. https:\/\/en.wikipedia.org\/wiki\/Heartbleed","key":"2_CR33"},{"unstructured":"Wikipedia: Intel MPX. https:\/\/en.wikipedia.org\/wiki\/Intel_MPX","key":"2_CR34"},{"doi-asserted-by":"crossref","unstructured":"Xu, Y., Cui, W., Peinado, M.: Controlled-channel attacks: deterministic side channels for untrusted operating systems. In: 2015 IEEE Symposium on Security and Privacy, pp. 640\u2013656. IEEE (2015)","key":"2_CR35","DOI":"10.1109\/SP.2015.45"},{"doi-asserted-by":"crossref","unstructured":"Zhao, S., Li, M., Zhangyz, Y., Lin, Z.: vSGX: virtualizing SGX enclaves on AMD SEV. In: 2022 IEEE Symposium on Security and Privacy (SP), pp. 321\u2013336. IEEE (2022)","key":"2_CR36","DOI":"10.1109\/SP46214.2022.9833694"}],"container-title":["Lecture Notes in Computer Science","Science of Cyber Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-45933-7_2","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,11,20]],"date-time":"2023-11-20T09:03:05Z","timestamp":1700470985000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-45933-7_2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9783031459320","9783031459337"],"references-count":36,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-45933-7_2","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"21 November 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SciSec","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Science of Cyber Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Melbourne, VIC","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Australia","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"11 July 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 July 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"5","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"scisec2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/scisec.org\/index.html","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Easychair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"60","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"21","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"6","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"35% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"5","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}