{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,7]],"date-time":"2026-05-07T11:39:56Z","timestamp":1778153996155,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":47,"publisher":"ACM","license":[{"start":{"date-parts":[[2018,12,3]],"date-time":"2018-12-03T00:00:00Z","timestamp":1543795200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2018,12,3]]},"DOI":"10.1145\/3274694.3274704","type":"proceedings-article","created":{"date-parts":[[2018,12,4]],"date-time":"2018-12-04T13:07:01Z","timestamp":1543928821000},"page":"441-452","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":36,"title":["Prime+Count"],"prefix":"10.1145","author":[{"given":"Haehyun","family":"Cho","sequence":"first","affiliation":[{"name":"Arizona State University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Penghui","family":"Zhang","sequence":"additional","affiliation":[{"name":"Arizona State University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Donguk","family":"Kim","sequence":"additional","affiliation":[{"name":"Samsung Research"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jinbum","family":"Park","sequence":"additional","affiliation":[{"name":"Samsung Research"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Choong-Hoon","family":"Lee","sequence":"additional","affiliation":[{"name":"Samsung Research"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ziming","family":"Zhao","sequence":"additional","affiliation":[{"name":"Rochester Institute of Technology"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Adam","family":"Doup\u00e9","sequence":"additional","affiliation":[{"name":"Arizona State University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gail-Joon","family":"Ahn","sequence":"additional","affiliation":[{"name":"Arizona State University, Samsung Research"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2018,12,3]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Proceedings of the Cryptographer's Track at the RSA Conference (CT-RSA). 256--273","author":"Ac\u0131i\u00e7mez Onur","year":"2008"},{"key":"e_1_3_2_1_2_1","unstructured":"ARM. 2012. ARM Architecture Reference Manual ARMv7-A and ARMv7-R edition. http:\/\/infocenter.arm.com\/help\/index.jsp?topic=\/com.arm.doc.ddi0406c\/index.html. (2012).  ARM. 2012. ARM Architecture Reference Manual ARMv7-A and ARMv7-R edition. http:\/\/infocenter.arm.com\/help\/index.jsp?topic=\/com.arm.doc.ddi0406c\/index.html. (2012)."},{"key":"e_1_3_2_1_3_1","unstructured":"ARM. 2012. ARMv6-M Architecture Reference Manual. https:\/\/silver.arm.com\/download\/download.tm?pv=1102513. (2012).  ARM. 2012. ARMv6-M Architecture Reference Manual. https:\/\/silver.arm.com\/download\/download.tm?pv=1102513. (2012)."},{"key":"e_1_3_2_1_4_1","unstructured":"ARM. 2016. ARM Architecture Reference Manual ARMv8 for ARMv8-A architecture profile. http:\/\/infocenter.arm.com\/help\/topic\/com.arm.doc.ddi0487a.k\/index.html. (2016).  ARM. 2016. ARM Architecture Reference Manual ARMv8 for ARMv8-A architecture profile. http:\/\/infocenter.arm.com\/help\/topic\/com.arm.doc.ddi0487a.k\/index.html. (2016)."},{"key":"e_1_3_2_1_5_1","unstructured":"ARM. 2016. SMC CALLING CONVENTION System Software on ARM Platforms. http:\/\/infocenter.arm.com\/help\/topic\/com.arm.doc.den0028b\/ARM_DEN0028B_SMC_Calling_Convention.pdf. (2016).  ARM. 2016. SMC CALLING CONVENTION System Software on ARM Platforms. http:\/\/infocenter.arm.com\/help\/topic\/com.arm.doc.den0028b\/ARM_DEN0028B_SMC_Calling_Convention.pdf. (2016)."},{"key":"e_1_3_2_1_6_1","unstructured":"ARM. 2017. ARM Trusted Firmware. https:\/\/github.com\/ARM-software\/arm-trusted-firmware. (2017).  ARM. 2017. ARM Trusted Firmware. https:\/\/github.com\/ARM-software\/arm-trusted-firmware. (2017)."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-10366-7_39"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/1030083.1030108"},{"key":"e_1_3_2_1_9_1","unstructured":"Yue Chen Yulong Zhang Zhi Wang and Tao Wei. 2017. Downgrade Attack on TrustZone. arXiv preprint arXiv:1707.05082 (2017).  Yue Chen Yulong Zhang Zhi Wang and Tao Wei. 2017. Downgrade Attack on TrustZone. arXiv preprint arXiv:1707.05082 (2017)."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.asoc.2016.09.014"},{"key":"e_1_3_2_1_11_1","volume-title":"Proceedings of the 26th USENIX Security Symposium (Security)","author":"Green Marc","year":"2017"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-40667-1_14"},{"key":"e_1_3_2_1_13_1","volume-title":"Proceedings of the 24th USENIX Security Symposium (Security)","author":"Gruss Daniel","year":"2015"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-21476-4_8"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.42"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1515\/popets-2015-0003"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/2714576.2714625"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23189"},{"key":"e_1_3_2_1_19_1","unstructured":"laginimaineb. 2016. Exploit that extracts Qualcomm's KeyMaster keys using CVE-2015--6639. https:\/\/github.com\/laginimaineb\/ExtractKeyMaster. (2016).  laginimaineb. 2016. Exploit that extracts Qualcomm's KeyMaster keys using CVE-2015--6639. https:\/\/github.com\/laginimaineb\/ExtractKeyMaster. (2016)."},{"key":"e_1_3_2_1_20_1","unstructured":"laginimaineb. 2016. Qualcomm TrustZone kernel privilege escalation using CVE-2016--2431. https:\/\/github.com\/laginimaineb\/cve-2016--2431. (2016).  laginimaineb. 2016. Qualcomm TrustZone kernel privilege escalation using CVE-2016--2431. https:\/\/github.com\/laginimaineb\/cve-2016--2431. (2016)."},{"key":"e_1_3_2_1_21_1","volume-title":"Proceedings of the 25th USENIX Security Symposium (Security)","author":"Lipp Moritz","year":"2016"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.43"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2017.23227"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-20550-2_3"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2017.23294"},{"key":"e_1_3_2_1_26_1","unstructured":"MITRE. 2013. CVE-2013-3051 Detail. https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2013-3051. (2013).  MITRE. 2013. CVE-2013-3051 Detail. https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2013-3051. (2013)."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/3092627.3092633"},{"key":"e_1_3_2_1_28_1","unstructured":"OP-TEE. 2017. OP-TEE Trusted OS Documentation. https:\/\/www.op-tee.org\/. (2017).  OP-TEE. 2017. OP-TEE Trusted OS Documentation. https:\/\/www.op-tee.org\/. (2017)."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1007\/11605805_1"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1137\/0108018"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1007\/s11241-007-9032-3"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653687"},{"key":"e_1_3_2_1_33_1","unstructured":"Dan Rosenberg. 2013. Unlock the Motorola Bootloader. http:\/\/blog.azimuthsecurity.com\/2013\/04\/unlocking-motorola-bootloader.html. (2013).  Dan Rosenberg. 2013. Unlock the Motorola Bootloader. http:\/\/blog.azimuthsecurity.com\/2013\/04\/unlocking-motorola-bootloader.html. (2013)."},{"key":"e_1_3_2_1_34_1","volume-title":"Proceedings of the 15th USENIX Security Symposium (Security)","author":"Shah Gaurav","year":"2006"},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.5555\/2831143.2831201"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2006.20"},{"key":"e_1_3_2_1_37_1","volume-title":"Proceedings of the 21st USENIX Security Symposium (Security)","author":"Wu Zhenyu","year":"2012"},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046660.2046670"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCE.2018.8326080"},{"key":"e_1_3_2_1_40_1","first-page":"140","article-title":"Recovering OpenSSL ECDSA Nonces Using the FLUSH+ RELOAD Cache Side-channel Attack","volume":"2014","author":"Yarom Yuval","year":"2014","journal-title":"IACR Cryptology ePrint Archive"},{"key":"e_1_3_2_1_41_1","volume-title":"Proceedings of the 23rd USENIX Security Symposium (Security)","author":"Yarom Yuval","year":"2014"},{"key":"e_1_3_2_1_42_1","unstructured":"Ning Zhang Kun Sun Deborah Shands Wenjing Lou and Y Thomas Hou. 2016. TruSpy: Cache Side-Channel Information Leakage from the Secure World on ARM Devices. https:\/\/eprint.iacr.org\/2016\/980.pdf. (2016).  Ning Zhang Kun Sun Deborah Shands Wenjing Lou and Y Thomas Hou. 2016. TruSpy: Cache Side-Channel Information Leakage from the Secure World on ARM Devices. https:\/\/eprint.iacr.org\/2016\/980.pdf. (2016)."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978360"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2011.31"},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382230"},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660356"},{"key":"e_1_3_2_1_47_1","first-page":"388","article-title":"Side-Channel Attacks: Ten Years After Its Publication and the Impacts on Cryptographic Module Security Testing","volume":"2005","author":"Zhou YongBin","year":"2005","journal-title":"IACR Cryptology ePrint Archive"}],"event":{"name":"ACSAC '18: 2018 Annual Computer Security Applications Conference","location":"San Juan PR USA","acronym":"ACSAC '18","sponsor":["ACSA Applied Computing Security Assoc"]},"container-title":["Proceedings of the 34th Annual Computer Security Applications Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3274694.3274704","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3274694.3274704","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T00:57:56Z","timestamp":1750208276000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3274694.3274704"}},"subtitle":["Novel Cross-world Covert Channels on ARM TrustZone"],"short-title":[],"issued":{"date-parts":[[2018,12,3]]},"references-count":47,"alternative-id":["10.1145\/3274694.3274704","10.1145\/3274694"],"URL":"https:\/\/doi.org\/10.1145\/3274694.3274704","relation":{},"subject":[],"published":{"date-parts":[[2018,12,3]]},"assertion":[{"value":"2018-12-03","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}