{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:19:48Z","timestamp":1750220388508,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":62,"publisher":"ACM","license":[{"start":{"date-parts":[[2022,4,25]],"date-time":"2022-04-25T00:00:00Z","timestamp":1650844800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"S\u00e4chsische AufbauBank, project funded by the European Regional Development Fund","award":["CloudKRITIS"],"award-info":[{"award-number":["CloudKRITIS"]}]},{"DOI":"10.13039\/501100001659","name":"Deutsche Forschungsgemeinschaft","doi-asserted-by":"publisher","award":["Center for Tactile Internet with Human-in-the-Loop (CETI) and the Center For Perspicuous Computing (CPEC)"],"award-info":[{"award-number":["Center for Tactile Internet with Human-in-the-Loop (CETI) and the Center For Perspicuous Computing (CPEC)"]}],"id":[{"id":"10.13039\/501100001659","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2022,4,25]]},"DOI":"10.1145\/3477314.3506961","type":"proceedings-article","created":{"date-parts":[[2022,5,7]],"date-time":"2022-05-07T00:37:36Z","timestamp":1651883856000},"page":"1626-1635","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["CHORS"],"prefix":"10.1145","author":[{"given":"Wojciech","family":"Ozga","sequence":"first","affiliation":[{"name":"TU Dresden, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rasha","family":"Faqeh","sequence":"additional","affiliation":[{"name":"TU Dresden, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Do Le","family":"Quoc","sequence":"additional","affiliation":[{"name":"Huawei Research"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Franz","family":"Gregor","sequence":"additional","affiliation":[{"name":"Scontain, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Silvio","family":"Dragone","sequence":"additional","affiliation":[{"name":"IBM Research Europe - Zurich"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Christof","family":"Fetzer","sequence":"additional","affiliation":[{"name":"TU Dresden, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2022,5,6]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23513"},{"key":"e_1_3_2_1_2_1","unstructured":"Ittai Anati Shay Gueron Simon Johnson and Vincent Scarlata. 2013. Innovative technology for CPU based attestation and sealing. In ISCA-HASP."},{"key":"e_1_3_2_1_3_1","volume-title":"SCONE: Secure linux containers with Intel SGX. In USENIX OSDI.","author":"Arnautov Sergei","year":"2016","unstructured":"Sergei Arnautov, Bohdan Trach, Franz Gregor, Thomas Knauth, Andre Martin, Christian Priebe, Joshua Lind, Divya Muthukumaran, Dan O'Keeffe, Mark Stillwell, David Goltzsche, Dave Eyers, R\u00fcdiger Kapitza, Peter Pietzuch, and Christof Fetzer. 2016. SCONE: Secure linux containers with Intel SGX. In USENIX OSDI."},{"volume-title":"A practical guide to TPM 2.0: Using the new trusted platform module in the new age of security","author":"Arthur Will","key":"e_1_3_2_1_4_1","unstructured":"Will Arthur and David Challener. 2015. A practical guide to TPM 2.0: Using the new trusted platform module in the new age of security. Springer Nature."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2014.103"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/3359789.3359809"},{"key":"e_1_3_2_1_8_1","volume-title":"IEEE security & privacy 12, 4","author":"Carvalho Marco","year":"2014","unstructured":"Marco Carvalho, Jared DeMott, Richard Ford, and David A Wheeler. 2014. Heart-bleed 101. IEEE security & privacy 12, 4 (2014), 63--67."},{"key":"e_1_3_2_1_9_1","volume-title":"Intel SGX Enabled Key Manager Service with OpenStack Barbican. arXiv preprint:1712.07694","author":"Chakrabarti Somnath","year":"2017","unstructured":"Somnath Chakrabarti, Brandon Baker, and Mona Vij. 2017. Intel SGX Enabled Key Manager Service with OpenStack Barbican. arXiv preprint:1712.07694 (2017)."},{"key":"e_1_3_2_1_10_1","unstructured":"Dhiman Chakraborty Lucjan Hanzlik and Sven Bugiel. 2019. simTPM: User-centric TPM for Mobile Devices. In USENIX Security."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00024"},{"key":"e_1_3_2_1_12_1","first-page":"1","article-title":"Intel SGX Explained","volume":"2016","author":"Costan Victor","year":"2016","unstructured":"Victor Costan and Srinivas Devadas. 2016. Intel SGX Explained. IACR Cryptol. ePrint Arch. 2016, 86 (2016), 1--118.","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"e_1_3_2_1_13_1","volume-title":"Graphical user interface for virtualized mobile handsets","author":"Danisevskis Janis","year":"2015","unstructured":"Janis Danisevskis, Michael Peter, Jan Nordholz, Matthias Petschick, and Julian Vetter. 2015. Graphical user interface for virtualized mobile handsets. IEEE S&P MoST (2015)."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"crossref","unstructured":"Ivan De Oliveira Nunes Xuhua Ding and Gene Tsudik. 2021. On the Root of Trust Identification Problem. In ACM IPSN.","DOI":"10.1145\/3412382.3458274"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/3374664.3375726"},{"volume-title":"accessed on","year":"2021","key":"e_1_3_2_1_16_1","unstructured":"Eperi. accessed on June 2021. Top Tier Bank and Confidential Computing. https:\/\/www.intel.com\/content\/www\/us\/en\/customer-spotlight\/stories\/eperi-sgx-customer-story.html."},{"volume-title":"Trust","author":"Fink Russell A","key":"e_1_3_2_1_17_1","unstructured":"Russell A Fink, Alan T Sherman, Alexander O Mitchell, and David C Challener. 2011. Catching the cuckoo: Verifying TPM proximity using a quote timing side-channel. In Trust. Springer."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/3302424.3303976"},{"key":"e_1_3_2_1_19_1","volume-title":"accessed on","author":"Gematik","year":"2021","unstructured":"Gematik GmbH. accessed on June 2021. Systemspezifisches Konzept E-Rezept. https:\/\/www.vesta-gematik.de\/standard\/formhandler\/324\/gemSysL_eRp_V1_0_0_CC6.pdf."},{"key":"e_1_3_2_1_20_1","volume-title":"accessed on","author":"Gematik","year":"2021","unstructured":"Gematik GmbH. accessed on June 2021. Systemspezifisches Konzept ePA. https:\/\/www.vesta-gematik.de\/standard\/formhandler\/324\/gemSysL_ePA_V1_3_0.pdf."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"crossref","unstructured":"Virgil Gligor and Maverick Woo. 2019. Establishing Software Root of Trust Unconditionally. In USENIX NDSS.","DOI":"10.14722\/ndss.2019.23170"},{"key":"e_1_3_2_1_22_1","volume-title":"Intel trusted execution technology: Hardware-based technology for enhancing server platform security","author":"Greene James","year":"2010","unstructured":"James Greene. 2010. Intel trusted execution technology: Hardware-based technology for enhancing server platform security. Intel Corporation (2010)."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSN48063.2020.00063"},{"key":"e_1_3_2_1_24_1","unstructured":"Trusted Computing Group. 2006. TCG Infrastructure Working Group Architecture Part II - Integrity Management Specification Version 1.0 Revision 1.0."},{"key":"e_1_3_2_1_25_1","first-page":"38","article-title":"TPM Library Specification, Family \"2.0","volume":"01","author":"Trusted Computing Group","year":"2016","unstructured":"Trusted Computing Group. 2016. TPM Library Specification, Family \"2.0\", Level 00, Revision 01.38. In TCG Resources, TPM 2.0 Library.","journal-title":"Level 00, Revision"},{"key":"e_1_3_2_1_26_1","unstructured":"Trusted Computing Group. 2019. TCG Trusted Attestation Protocol (TAP) Information Model for TPM Families 1.2 and 2.0 and DICE Family 1.0."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00011"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1506409.1506429"},{"key":"e_1_3_2_1_29_1","volume-title":"27th USENIX Security Symposium (USENIX Security 18)","author":"Han Seunghun","year":"2018","unstructured":"Seunghun Han, Wook Shin, Jun-Hyeok Park, and HyoungChun Kim. 2018. A Bad Dream: Subverting Trusted Platform Module While You Are Sleeping. In 27th USENIX Security Symposium (USENIX Security 18)."},{"key":"e_1_3_2_1_30_1","volume-title":"IBM 4769 Data Sheet","author":"Ie Cryptographic IBM.","year":"2019","unstructured":"IBM. 2019. IBM CEX7S \/ 4769 PCIe Cryptographic Coprocessor (HSM). IBM 4769 Data Sheet (2019)."},{"key":"e_1_3_2_1_31_1","volume-title":"accessed on","author":"IBM.","year":"2021","unstructured":"IBM. accessed on June 2021. IBM TPM Attestation Client Server. https:\/\/sourceforge.net\/projects\/ibmtpm20acs\/."},{"volume-title":"accessed on","year":"2021","key":"e_1_3_2_1_32_1","unstructured":"Intel. accessed on June 2021. Trusted Boot (tboot). https:\/\/sourceforge.net\/projects\/tboot\/."},{"key":"e_1_3_2_1_33_1","volume-title":"accessed on","author":"Intel and National Security Agency.","year":"2021","unstructured":"Intel and National Security Agency. accessed on June 2021. Intel Open Cloud Intergrity Technology. https:\/\/01.org\/opencit."},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"crossref","unstructured":"Ramya Jayaram Masti Claudio Marforio and Srdjan Capkun. 2013. An architecture for concurrent execution of secure environments in clouds. In CCSW.","DOI":"10.1145\/2517488.2517489"},{"key":"e_1_3_2_1_35_1","volume-title":"Intel software guard extensions: EPID provisioning and attestation services. White Paper","author":"Johnson Simon","year":"2016","unstructured":"Simon Johnson, Vinnie Scarlata, Carlos Rozas, Ernie Brickell, and Frank Mckeen. 2016. Intel software guard extensions: EPID provisioning and attestation services. White Paper (2016)."},{"key":"e_1_3_2_1_36_1","volume-title":"OSLO: Improving the security of Trusted Computing. USENIX","author":"Kauer Bernhard","year":"2007","unstructured":"Bernhard Kauer. 2007. OSLO: Improving the security of Trusted Computing. USENIX (2007)."},{"key":"e_1_3_2_1_37_1","volume-title":"Integrating remote attestation with transport layer security. arXiv preprint arXiv:1801.05863","author":"Knauth Thomas","year":"2018","unstructured":"Thomas Knauth, Michael Steiner, Somnath Chakrabarti, Li Lei, Cedric Xing, and Mona Vij. 2018. Integrating remote attestation with transport layer security. arXiv preprint arXiv:1801.05863 (2018)."},{"key":"e_1_3_2_1_38_1","volume-title":"accessed on","author":"Kremer Steve","year":"2021","unstructured":"Steve Kremer and Robert Kuennemann. accessed on June 2021. SAPIC: A Stateful Applied Pi Calculus. http:\/\/sapic.gforge.inria.fr\/."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"crossref","unstructured":"Matthias Lange and Steffen Liebergeld. 2013. Crossover: secure and usable user interface for mobile devices with multiple isolated os personalities. In ACSAC.","DOI":"10.1145\/2523649.2523667"},{"key":"e_1_3_2_1_40_1","volume-title":"Keystone: An open framework for architecting trusted execution environments. In ACM EuroSys.","author":"Lee Dayeol","year":"2020","unstructured":"Dayeol Lee, David Kohlbrenner, Shweta Shinde, Krste Asanovi\u0107, and Dawn Song. 2020. Keystone: An open framework for architecting trusted execution environments. In ACM EuroSys."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23194"},{"key":"e_1_3_2_1_42_1","volume-title":"The Rust language. ACM SIGAda Ada Letters","author":"Matsakis Nicholas D","year":"2014","unstructured":"Nicholas D Matsakis and Felix S Klock. 2014. The Rust language. ACM SIGAda Ada Letters (2014), 103--104."},{"volume-title":"TrustVisor: Efficient TCB reduction and attestation","author":"McCune Jonathan M","key":"e_1_3_2_1_43_1","unstructured":"Jonathan M McCune, Yanlin Li, Ning Qu, Zongwei Zhou, Anupam Datta, Virgil Gligor, and Adrian Perrig. 2010. TrustVisor: Efficient TCB reduction and attestation. In IEEE S&P."},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1145\/1352592.1352625"},{"volume-title":"Formal Methods for Open Object-based Distributed Systems","author":"Milner Robin","key":"e_1_3_2_1_45_1","unstructured":"Robin Milner. 1997. The pi calculus and its applications. In Formal Methods for Open Object-based Distributed Systems. Springer, 3--4."},{"key":"e_1_3_2_1_46_1","volume-title":"Daniel Gruss, and Frank Piessens.","author":"Murdock Kit","year":"2020","unstructured":"Kit Murdock, David Oswald, Flavio D. Garcia, Jo Van Bulck, Daniel Gruss, and Frank Piessens. 2020. Plundervolt: Software-based Fault Injection Attacks against Intel SGX. In IEEE S&P."},{"key":"e_1_3_2_1_47_1","volume-title":"last accessed on","author":"Myers Eugene D","year":"2021","unstructured":"Eugene D Myers. last accessed on July 2021. Using the Intel STM for Protected Execution. https:\/\/www.platformsecuritysummit.com\/2018\/speaker\/myers\/STMPE2Intelv84a.pdf."},{"key":"e_1_3_2_1_48_1","volume-title":"2018 Usenix Annual Technical Conference (USENIXATC '18)","author":"Oleksenko Oleksii","year":"2018","unstructured":"Oleksii Oleksenko, Bohdan Trach, Robert Krahn, Mark Silberstein, and Christof Fetzer. 2018. Varys: Protecting SGX enclaves from practical side-channel attacks. In 2018 Usenix Annual Technical Conference (USENIXATC '18). 227--240."},{"key":"e_1_3_2_1_49_1","volume-title":"29th USENIX Security Symposium (USENIX Security '20)","author":"Oleksenko Oleksii","year":"2020","unstructured":"Oleksii Oleksenko, Bohdan Trach, Mark Silberstein, and Christof Fetzer. 2020. SpecFuzz: Bringing Spectre-type vulnerabilities to the surface. In 29th USENIX Security Symposium (USENIX Security '20). 1481--1498."},{"key":"e_1_3_2_1_50_1","volume-title":"Do Le Quoc, and Christof Fetzer","author":"Ozga Wojciech","year":"2020","unstructured":"Wojciech Ozga, Do Le Quoc, and Christof Fetzer. 2020. A practical approach for updating an integrity-enforced operating system. In ACM\/IFIP Middleware."},{"key":"e_1_3_2_1_51_1","unstructured":"Bryan Parno. 2008. Bootstrapping Trust in a Trusted Platform. In HOTSEC."},{"key":"e_1_3_2_1_52_1","unstructured":"Reiner Sailer Xiaolan Zhang Trent Jaeger and Leendert Van Doorn. 2004. Design and Implementation of a TCG-based Integrity Measurement Architecture. In USENIX Security."},{"key":"e_1_3_2_1_53_1","volume-title":"Supporting third party attestation for Intel SGX with Intel data center attestation primitives. White paper","author":"Scarlata Vinnie","year":"2018","unstructured":"Vinnie Scarlata, Simon Johnson, James Beaney, and Piotr Zmijewski. 2018. Supporting third party attestation for Intel SGX with Intel data center attestation primitives. White paper (2018)."},{"issue":"0","key":"e_1_3_2_1_54_1","first-page":"0","article-title":"TCG D-RTM Architecture","volume":"1","author":"Shin Jacob","year":"2013","unstructured":"Jacob Shin, Bill Jacobs, Mark Scott-Nash, Julian Hammersley, Monty Wiseman, Rob Spiger, Dick Wilkins, Ralf Findeisen, David Challener, Dalvis Desselle, Steve Goodman, Gary Simpson, Kirk Brannock, Amy Nelson, Mark Piwonka, Conan Dailey, and Randy Springfield. 2013. TCG D-RTM Architecture, Document Version 1.0.0. Trusted Computing Group (2013).","journal-title":"Document Version"},{"volume-title":"TrustICE: Hardware-Assisted Isolated Computing Environments on Mobile Devices","author":"Sun He","key":"e_1_3_2_1_56_1","unstructured":"He Sun, Kun Sun, Yuewu Wang, Jiwu Jing, and Haining Wang. 2015. TrustICE: Hardware-Assisted Isolated Computing Environments on Mobile Devices. In IEEE\/IFIP DSN."},{"key":"e_1_3_2_1_57_1","volume-title":"Foreshadow: Extracting the keys to the Intel SGX kingdom with transient out-of-order execution. In USENIX Security.","author":"Bulck Jo Van","year":"2018","unstructured":"Jo Van Bulck, Marina Minkin, Ofir Weisse, Daniel Genkin, Baris Kasikci, Frank Piessens, Mark Silberstein, Thomas F Wenisch, Yuval Yarom, and Raoul Strackx. 2018. Foreshadow: Extracting the keys to the Intel SGX kingdom with transient out-of-order execution. In USENIX Security."},{"key":"e_1_3_2_1_58_1","doi-asserted-by":"publisher","DOI":"10.1145\/3352460.3358306"},{"key":"e_1_3_2_1_59_1","volume-title":"A Hijacker's Guide to Communication Interfaces of the Trusted Platform Module. Computers & Mathematics with Applications","author":"Winter Johannes","year":"2013","unstructured":"Johannes Winter and Kurt Dietrich. 2013. A Hijacker's Guide to Communication Interfaces of the Trusted Platform Module. Computers & Mathematics with Applications (2013)."},{"key":"e_1_3_2_1_60_1","unstructured":"Rafal Wojtczuk and Joanna Rutkowska. 2009. Attacking Intel Trusted Execution Technology. In Black Hat DC."},{"key":"e_1_3_2_1_61_1","volume-title":"accessed on","author":"Wojtczuk Rafal","year":"2020","unstructured":"Rafal Wojtczuk and Joanna Rutkowska. accessed on November, 2020. Attacking Intel TXT via SINIT code execution hijacking. https:\/\/invisiblethingslab.com\/resources\/2011\/Attacking_Intel_TXT_via_SINIT_hijacking.pdf."},{"volume-title":"Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems","author":"Xu Yuanzhong","key":"e_1_3_2_1_62_1","unstructured":"Yuanzhong Xu, Weidong Cui, and Marcus Peinado. 2015. Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems. In IEEE S&P."},{"key":"e_1_3_2_1_63_1","unstructured":"Andreas Zeller Rahul Gopinath Marcel B\u00f6hme Gordon Fraser and Christian Holler. 2019. The fuzzing book."},{"key":"e_1_3_2_1_64_1","doi-asserted-by":"crossref","unstructured":"Jean-Karim Zinzindohou\u00e9 Karthikeyan Bhargavan Jonathan Protzenko and Benjamin Beurdouche. 2017. HACL*: A verified modern cryptographic library. In ACM SIGSAC CCS.","DOI":"10.1145\/3133956.3134043"}],"event":{"name":"SAC '22: The 37th ACM\/SIGAPP Symposium on Applied Computing","sponsor":["SIGAPP ACM Special Interest Group on Applied Computing"],"location":"Virtual Event","acronym":"SAC '22"},"container-title":["Proceedings of the 37th ACM\/SIGAPP Symposium on Applied Computing"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3477314.3506961","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3477314.3506961","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T20:18:33Z","timestamp":1750191513000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3477314.3506961"}},"subtitle":["hardening high-assurance security systems with trusted computing"],"short-title":[],"issued":{"date-parts":[[2022,4,25]]},"references-count":62,"alternative-id":["10.1145\/3477314.3506961","10.1145\/3477314"],"URL":"https:\/\/doi.org\/10.1145\/3477314.3506961","relation":{},"subject":[],"published":{"date-parts":[[2022,4,25]]},"assertion":[{"value":"2022-05-06","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}