{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,23]],"date-time":"2025-08-23T05:23:53Z","timestamp":1755926633724,"version":"3.37.3"},"reference-count":56,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"1","license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["61972245"],"award-info":[{"award-number":["61972245"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Dependable and Secure Comput."],"published-print":{"date-parts":[[2023,1,1]]},"DOI":"10.1109\/tdsc.2021.3137403","type":"journal-article","created":{"date-parts":[[2021,12,23]],"date-time":"2021-12-23T20:40:59Z","timestamp":1640292059000},"page":"478-491","source":"Crossref","is-referenced-by-count":4,"title":["QKPT: Securing Your Private Keys in Cloud With Performance, Scalability and Transparency"],"prefix":"10.1109","volume":"20","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-2548-5732","authenticated-orcid":false,"given":"Zongpu","family":"Zhang","sequence":"first","affiliation":[{"name":"Shanghai Jiao Tong University, Shanghai, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8207-2224","authenticated-orcid":false,"given":"Hubin","family":"Zhang","sequence":"additional","affiliation":[{"name":"Shanghai Jiao Tong University, Shanghai, China"}]},{"given":"Junyuan","family":"Wang","sequence":"additional","affiliation":[{"name":"Intel Asia-Pacific R&amp;D Ltd., Shanghai, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3643-1668","authenticated-orcid":false,"given":"Xiaokang","family":"Hu","sequence":"additional","affiliation":[{"name":"Shanghai Jiao Tong University, Shanghai, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0894-0892","authenticated-orcid":false,"given":"Jian","family":"Li","sequence":"additional","affiliation":[{"name":"Shanghai Jiao Tong University, Shanghai, China"}]},{"given":"Wenqian","family":"Yu","sequence":"additional","affiliation":[{"name":"Intel Asia-Pacific R&amp;D Ltd., Shanghai, China"}]},{"given":"Ping","family":"Yu","sequence":"additional","affiliation":[{"name":"Intel Asia-Pacific R&amp;D Ltd., Shanghai, China"}]},{"given":"Weigang","family":"Li","sequence":"additional","affiliation":[{"name":"Intel Asia-Pacific R&amp;D Ltd., Shanghai, China"}]},{"given":"Bo","family":"Cui","sequence":"additional","affiliation":[{"name":"Intel Asia-Pacific R&amp;D Ltd., Shanghai, China"}]},{"given":"Guodong","family":"Zhu","sequence":"additional","affiliation":[{"name":"Intel Asia-Pacific R&amp;D Ltd., Shanghai, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7354-5218","authenticated-orcid":false,"given":"Kapil","family":"Sood","sequence":"additional","affiliation":[{"name":"Intel Corporation, Santa Clara, CA, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7088-345X","authenticated-orcid":false,"given":"Brian","family":"Will","sequence":"additional","affiliation":[{"name":"Intel Corporation, Santa Clara, CA, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4714-7400","authenticated-orcid":false,"given":"Haibing","family":"Guan","sequence":"additional","affiliation":[{"name":"Shanghai Jiao Tong University, Shanghai, China"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-145"},{"year":"2019","key":"ref2","article-title":"Rightscale 2019 state of the cloud report"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1016\/j.compeleceng.2016.03.004"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2011.10.006"},{"key":"ref5","first-page":"913","article-title":"A placement vulnerability study in multi-tenant public clouds","volume-title":"Proc. USENIX Secur. Symp.","author":"Varadarajan"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382230"},{"key":"ref7","first-page":"703","article-title":"Preventing cryptographic key leakage in cloud virtual machines","volume-title":"Proc. 23rd USENIX Secur. Symp. Secur.","author":"Pattuk"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.43"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-11379-1_15"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.42"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660356"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1145\/2663716.2663755"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.17487\/rfc5246"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4302-6584-9"},{"year":"2019","key":"ref26","article-title":"Intel c620 series chipset platform controller hub"},{"volume-title":"Public-Key Cryptography","year":"2013","author":"Salomaa","key":"ref27"},{"key":"ref30","first-page":"22","article-title":"Flush+ reload: A high resolution, low noise, L3 cache side-channel attack","volume-title":"Proc. USENIX Secur. Symp.","author":"Yarom"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/PCCC.2011.6108094"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1145\/3037697.3037703"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2017.49"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-41476-3_8"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1145\/2043556.2043576"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/3176244"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2017.52"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-45539-6_15"},{"issue":"086","key":"ref40","first-page":"1","article-title":"Intel SGX explained","volume":"2016","author":"Costan","year":"2016","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1145\/2799647"},{"key":"ref43","first-page":"689","article-title":"Scone: Secure linux containers with intel SGX","volume-title":"Proc. 12th USENIX Symp. Oper. Syst. Des. Implementation","author":"Arnautov"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1145\/2988336.2988350"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1145\/3127479.3127482"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00025"},{"key":"ref47","first-page":"735","article-title":"Achieving keyless CDNs with conclaves","volume-title":"Proc. Symp. USENIX Secur.","author":"Herwig"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1145\/3274808.3274824"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1145\/3309697.3331480"},{"year":"2016","key":"ref50","article-title":"Trusted platform module library family \u201c2.0\u201d specification - part 1: Architecture, revision 1.38"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1145\/2043556.2043580"},{"key":"ref53","first-page":"175","article-title":"Policy-sealed data: A new abstraction for building trusted cloud services","volume-title":"Proc. 21st USENIX Secur. Symp.","author":"Santos"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1109\/TSC.2015.2392099"},{"key":"ref55","first-page":"321","article-title":"Pasture: Secure offline data access using commodity trusted hardware","volume-title":"Proc. Presented Part 10th USENIX Symp. Oper. Syst. Des. Implementation","author":"Kotla"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1145\/2307636.2307670"},{"key":"ref57","first-page":"187","article-title":"cTPM: A cloud TPM for cross-device trusted applications","volume-title":"Proc. 11th USENIX Symp. Netw. Syst. Des. Implementation","author":"Chen"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2011.38"},{"article-title":"Tpm recommendations","year":"2020","author":"Poggemeyer","key":"ref59"},{"key":"ref60","first-page":"236","article-title":"TPM-SIM: A framework for performance evaluation of trusted platform modules","volume-title":"Proc. 48th Des. Autom. Conf.","author":"Schmitz"},{"year":"2016","key":"ref62","article-title":"Trusted platform module library family \u201c2.0\u201d specification - part 3: Commands, revision 1.38"},{"year":"2019","key":"ref63","article-title":"Intel quickassist technology api programmer\u2019s guide"},{"key":"ref64","doi-asserted-by":"crossref","DOI":"10.17487\/RFC8017","article-title":"Pkcs# 1: Rsa cryptography specifications version 2.2","author":"Moriarty","year":"2016"},{"key":"ref66","first-page":"305","article-title":"VTPM: Virtualizing the trusted platform module","volume-title":"Proc. 15th USENIX Secur. Symp.","author":"Berger"},{"article-title":"Virtual TPM proxy driver for linux containers","year":"2020","author":"Berger","key":"ref68"},{"year":"2018","key":"ref69","article-title":"Using intel virtualization technology (intel VT) with intel quickassist technology"},{"year":"2018","key":"ref70","article-title":"Using intel quickassist technology in linux* container and docker"},{"year":"2017","key":"ref72","article-title":"Trusted platform module library family \u201c2.0\u201d specification - part 3: Commands, revision 1.46 draft"},{"key":"ref74","doi-asserted-by":"publisher","DOI":"10.1145\/3293883.3295705"},{"year":"2016","key":"ref75","article-title":"Trusted platform module library family \u201c2.0\u201d specification - part 2: Structures, revision 1.38"},{"issue":"173","key":"ref76","article-title":"Nginx: The high-performance web server and reverse proxy","volume":"2008","author":"Reese","year":"2008","journal-title":"Linux J."},{"volume-title":"Guide to Elliptic Curve Cryptography","year":"2006","author":"Hankerson","key":"ref78"}],"container-title":["IEEE Transactions on Dependable and Secure Computing"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8858\/10016903\/09661398.pdf?arnumber=9661398","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,1,10]],"date-time":"2024-01-10T00:30:38Z","timestamp":1704846638000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9661398\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,1,1]]},"references-count":56,"journal-issue":{"issue":"1"},"URL":"https:\/\/doi.org\/10.1109\/tdsc.2021.3137403","relation":{},"ISSN":["1545-5971","1941-0018","2160-9209"],"issn-type":[{"type":"print","value":"1545-5971"},{"type":"electronic","value":"1941-0018"},{"type":"electronic","value":"2160-9209"}],"subject":[],"published":{"date-parts":[[2023,1,1]]}}}