{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,31]],"date-time":"2026-03-31T09:27:05Z","timestamp":1774949225727,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":81,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,12,4]],"date-time":"2023-12-04T00:00:00Z","timestamp":1701648000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100006374","name":"National Science Foundation","doi-asserted-by":"publisher","award":["OAC-2341138"],"award-info":[{"award-number":["OAC-2341138"]}],"id":[{"id":"10.13039\/501100006374","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,12,4]]},"DOI":"10.1145\/3627106.3627112","type":"proceedings-article","created":{"date-parts":[[2023,12,2]],"date-time":"2023-12-02T18:13:22Z","timestamp":1701540802000},"page":"732-743","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":28,"title":["Remote attestation of confidential VMs using ephemeral vTPMs"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6274-9242","authenticated-orcid":false,"given":"Vikram","family":"Narayanan","sequence":"first","affiliation":[{"name":"University of Utah, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0004-6504-022X","authenticated-orcid":false,"given":"Claudio","family":"Carvalho","sequence":"additional","affiliation":[{"name":"IBM Research, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0006-0886-8893","authenticated-orcid":false,"given":"Angelo","family":"Ruocco","sequence":"additional","affiliation":[{"name":"IBM Research, Switzerland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-3879-6870","authenticated-orcid":false,"given":"Gheorghe","family":"Almasi","sequence":"additional","affiliation":[{"name":"IBM Research, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-6822-1607","authenticated-orcid":false,"given":"James","family":"Bottomley","sequence":"additional","affiliation":[{"name":"IBM Research, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3434-1968","authenticated-orcid":false,"given":"Mengmei","family":"Ye","sequence":"additional","affiliation":[{"name":"IBM Research, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0006-3655-2378","authenticated-orcid":false,"given":"Tobin","family":"Feldman-Fitzthum","sequence":"additional","affiliation":[{"name":"IBM Research, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0002-1433-9104","authenticated-orcid":false,"given":"Daniele","family":"Buono","sequence":"additional","affiliation":[{"name":"IBM Research, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-0150-1055","authenticated-orcid":false,"given":"Hubertus","family":"Franke","sequence":"additional","affiliation":[{"name":"IBM Research, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8769-8373","authenticated-orcid":false,"given":"Anton","family":"Burtsev","sequence":"additional","affiliation":[{"name":"University of Utah, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,12,4]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Add integrity and security to TPM2 transactions. https:\/\/www.spinics.net\/lists\/linux-integrity\/msg24093.html. Online","year":"2022","unstructured":"2022. Add integrity and security to TPM2 transactions. https:\/\/www.spinics.net\/lists\/linux-integrity\/msg24093.html. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_2_1","volume-title":"Alibaba Cloud Security White Paper. Online","year":"2022","unstructured":"2022. Alibaba Cloud Security White Paper. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_3_1","volume-title":"AMD Memory encryption. https:\/\/amd.wpenginepowered.com\/wordpress\/media\/2013\/12\/AMD_Memory_Encryption_Whitepaper_v9-Public.pdf. Online","year":"2022","unstructured":"2022. AMD Memory encryption. https:\/\/amd.wpenginepowered.com\/wordpress\/media\/2013\/12\/AMD_Memory_Encryption_Whitepaper_v9-Public.pdf. Online; accessed Dec 19, 2022."},{"key":"e_1_3_2_1_4_1","volume-title":"AMD Secure Encrypted Virtualization. https:\/\/github.com\/AMDESE. Online","year":"2022","unstructured":"2022. AMD Secure Encrypted Virtualization. https:\/\/github.com\/AMDESE. Online; accessed Nov 11, 2022."},{"key":"e_1_3_2_1_5_1","volume-title":"AMD SEV-SNP: Strengthening VM Isolation with Integrity Protection and More. https:\/\/www.amd.com\/system\/files\/TechDocs\/SEV-SNP-strengthening-vm-isolation-with-integrity-protection-and-more.pdf. Online","year":"2022","unstructured":"2022. AMD SEV-SNP: Strengthening VM Isolation with Integrity Protection and More. https:\/\/www.amd.com\/system\/files\/TechDocs\/SEV-SNP-strengthening-vm-isolation-with-integrity-protection-and-more.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_6_1","volume-title":"AWS Nitro System. https:\/\/aws.amazon.com\/ec2\/nitro\/. Online","year":"2022","unstructured":"2022. AWS Nitro System. https:\/\/aws.amazon.com\/ec2\/nitro\/. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_7_1","volume-title":"How a months-old AMD microcode bug destroyed my weekend. https:\/\/arstechnica.com\/gadgets\/2019\/10\/how-a-months-old-amd-microcode-bug-destroyed-my-weekend\/. Online","year":"2022","unstructured":"2022. How a months-old AMD microcode bug destroyed my weekend. https:\/\/arstechnica.com\/gadgets\/2019\/10\/how-a-months-old-amd-microcode-bug-destroyed-my-weekend\/. Online; accessed Dec 7, 2022."},{"key":"e_1_3_2_1_8_1","volume-title":"Intel Trust Domain CPU Architectural Extensions. https:\/\/www.intel.com\/content\/dam\/develop\/external\/us\/en\/documents\/intel-tdx-cpu-architectural-specification.pdf. Online","year":"2022","unstructured":"2022. Intel Trust Domain CPU Architectural Extensions. https:\/\/www.intel.com\/content\/dam\/develop\/external\/us\/en\/documents\/intel-tdx-cpu-architectural-specification.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_9_1","volume-title":"https:\/\/github.com\/keylime\/keylime. Online","year":"2022","unstructured":"2022. Keylime. https:\/\/github.com\/keylime\/keylime. Online; accessed Nov 11, 2022."},{"key":"e_1_3_2_1_10_1","volume-title":"https:\/\/nvd.nist.gov\/vuln\/search. Online","author":"Es KVM","year":"2022","unstructured":"2022. KVM CVEs. https:\/\/nvd.nist.gov\/vuln\/search. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_11_1","volume-title":"Linux SVSM for secure x86 virtualization in Rust. https:\/\/github.com\/AMDESE\/linux-svsm. Online","year":"2022","unstructured":"2022. Linux SVSM for secure x86 virtualization in Rust. https:\/\/github.com\/AMDESE\/linux-svsm. Online; accessed Nov 11, 2022."},{"key":"e_1_3_2_1_12_1","volume-title":"Microsoft Azure Attestation. https:\/\/learn.microsoft.com\/en-us\/azure\/attestation\/overview. Online","year":"2022","unstructured":"2022. Microsoft Azure Attestation. https:\/\/learn.microsoft.com\/en-us\/azure\/attestation\/overview. Online; accessed Dec 6, 2022."},{"key":"e_1_3_2_1_13_1","volume-title":"Musl libc. https:\/\/musl.libc.org\/. Online","year":"2022","unstructured":"2022. Musl libc. https:\/\/musl.libc.org\/. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_14_1","volume-title":"https:\/\/github.com\/microsoft\/ms-tpm-20-ref. Online","author":"Reference Official TPM","year":"2022","unstructured":"2022. Official TPM 2.0 Reference Implementation (by Microsoft). https:\/\/github.com\/microsoft\/ms-tpm-20-ref. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_15_1","volume-title":"https:\/\/github.com\/openssl\/openssl. Online","author":"SSL.","year":"2022","unstructured":"2022. OpenSSL. https:\/\/github.com\/openssl\/openssl. Online; accessed Nov 11, 2022."},{"key":"e_1_3_2_1_16_1","volume-title":"Protecting VM register state with SEV-ES. https:\/\/www.amd.com\/system\/files\/TechDocs\/Protecting%20VM%20Register%20State%20with%20SEV-ES.pdf. Online","year":"2022","unstructured":"2022. Protecting VM register state with SEV-ES. https:\/\/www.amd.com\/system\/files\/TechDocs\/Protecting%20VM%20Register%20State%20with%20SEV-ES.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_17_1","volume-title":"Secure VM Service Module for SEV-SNP Guests. https:\/\/developer.amd.com\/wp-content\/resources\/58019.pdf. Online","year":"2022","unstructured":"2022. Secure VM Service Module for SEV-SNP Guests. https:\/\/developer.amd.com\/wp-content\/resources\/58019.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_18_1","volume-title":"Security Protocol and Data Model (SPDM) Specification. https:\/\/www.dmtf.org\/sites\/default\/files\/standards\/documents\/DSP0274_1.1.0.pdf. Online","year":"2022","unstructured":"2022. Security Protocol and Data Model (SPDM) Specification. https:\/\/www.dmtf.org\/sites\/default\/files\/standards\/documents\/DSP0274_1.1.0.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_19_1","volume-title":"SEV-ES Guest-Hypervisor Communication Block Standardization. https:\/\/developer.amd.com\/wp-content\/resources\/56421.pdf. Online","year":"2022","unstructured":"2022. SEV-ES Guest-Hypervisor Communication Block Standardization. https:\/\/developer.amd.com\/wp-content\/resources\/56421.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_20_1","volume-title":"https:\/\/trustedcomputinggroup.org\/resource\/tpm-library-specification\/. Online","author":"TPM","year":"2022","unstructured":"2022. TPM 2.0 library. https:\/\/trustedcomputinggroup.org\/resource\/tpm-library-specification\/. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_21_1","volume-title":"Trusted Platform Module (TPM2.0) tools. https:\/\/github.com\/tpm2-software\/tpm2-tools. Online","year":"2022","unstructured":"2022. Trusted Platform Module (TPM2.0) tools. https:\/\/github.com\/tpm2-software\/tpm2-tools. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_22_1","volume-title":"Validating instances using Cloud Monitoring. https:\/\/cloud.google.com\/compute\/confidential-vm\/docs\/monitoring. Online","year":"2022","unstructured":"2022. Validating instances using Cloud Monitoring. https:\/\/cloud.google.com\/compute\/confidential-vm\/docs\/monitoring. Online; accessed Dec 6, 2022."},{"key":"e_1_3_2_1_23_1","unstructured":"2022. Virtual Trusted Platform Module for Shielded VMs: security in plaintext. https:\/\/cloud.google.com\/blog\/products\/identity-security\/virtual-trusted-platform-module-for-shielded-vms-security-in-plaintext. Online; accessed Dec 6 2022."},{"key":"e_1_3_2_1_24_1","volume-title":"https:\/\/www.vmware.com\/security\/advisories.html. Online","author":"Es Ware","year":"2022","unstructured":"2022. VMWare CVEs. https:\/\/www.vmware.com\/security\/advisories.html. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_25_1","volume-title":"WolfSSL Embedded SSL\/TLS Library. https:\/\/github.com\/wolfSSL\/wolfssl\/. Online","year":"2022","unstructured":"2022. WolfSSL Embedded SSL\/TLS Library. https:\/\/github.com\/wolfSSL\/wolfssl\/. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_26_1","volume-title":"Xen vulnerability statistics. https:\/\/www.cvedetails.com\/product\/23463\/XEN-XEN.html?vendor_id=6276. Online","year":"2022","unstructured":"2022. Xen vulnerability statistics. https:\/\/www.cvedetails.com\/product\/23463\/XEN-XEN.html?vendor_id=6276. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_27_1","volume-title":"Apache Cloudstack CVEs. https:\/\/www.cvedetails.com\/vulnerability-list\/vendor_id-45\/product_id-23458\/Apache-Cloudstack.html. Online","year":"2023","unstructured":"2023. Apache Cloudstack CVEs. https:\/\/www.cvedetails.com\/vulnerability-list\/vendor_id-45\/product_id-23458\/Apache-Cloudstack.html. Online; accessed May 20, 2023."},{"key":"e_1_3_2_1_28_1","volume-title":"https:\/\/www.cvedetails.com\/vulnerability-list\/vendor_id-11727\/Openstack.html. Online","author":"Es Openstack","year":"2023","unstructured":"2023. Openstack CVEs. https:\/\/www.cvedetails.com\/vulnerability-list\/vendor_id-11727\/Openstack.html. Online; accessed May 20, 2023."},{"key":"e_1_3_2_1_29_1","volume-title":"https:\/\/lore.kernel.org\/all\/acb06bc7f329dfee21afa1b2ff080fe29b799021.camel@linux.ibm.com\/. Online","author":"RFC","year":"2023","unstructured":"2023. [RFC 0\/3] Enlightened vTPM support for SVSM on SEV-SNP. https:\/\/lore.kernel.org\/all\/acb06bc7f329dfee21afa1b2ff080fe29b799021.camel@linux.ibm.com\/. Online; accessed May 20, 2023."},{"key":"e_1_3_2_1_30_1","first-page":"18","article-title":"Trustzone: Integrated hardware and software security","volume":"3","author":"Alves Tiago","year":"2004","unstructured":"Tiago Alves. 2004. Trustzone: Integrated hardware and software security. Information Quarterly 3 (2004), 18\u201324.","journal-title":"Information Quarterly"},{"key":"e_1_3_2_1_31_1","volume-title":"Secure Encrypted Virtualization API Version 0.24. https:\/\/www.amd.com\/system\/files\/TechDocs\/55766_SEV-KM_API_Specification.pdf. Online","author":"AMD.","year":"2022","unstructured":"AMD. 2022. Secure Encrypted Virtualization API Version 0.24. https:\/\/www.amd.com\/system\/files\/TechDocs\/55766_SEV-KM_API_Specification.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_32_1","volume-title":"Versioned Chip Endorsement Key (VCEK) Certificate and KDS Interface Specification. https:\/\/www.amd.com\/system\/files\/TechDocs\/57230.pdf. Online","author":"AMD.","year":"2023","unstructured":"AMD. 2023. Versioned Chip Endorsement Key (VCEK) Certificate and KDS Interface Specification. https:\/\/www.amd.com\/system\/files\/TechDocs\/57230.pdf. Online; accessed May 17, 2023."},{"key":"e_1_3_2_1_33_1","volume-title":"HP Laboratories Bristol","author":"Anderson J","year":"2007","unstructured":"Melvin\u00a0J Anderson, Micha Moffie, Chris\u00a0I Dalton, 2007. Towards Trustworthy Virtualization Environments: Xen Library OS Security Service Infrastructure. Trusted Systems Laboratory, HP Laboratories Bristol (2007), 88\u2013111."},{"key":"e_1_3_2_1_34_1","volume-title":"ARM CCA Security Model 1.0. https:\/\/developer.arm.com\/documentation\/DEN0096\/latest. Online","author":"ARM Inc.","year":"2022","unstructured":"ARM Inc.2022. ARM CCA Security Model 1.0. https:\/\/developer.arm.com\/documentation\/DEN0096\/latest. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_35_1","volume-title":"Introducing Arm Confidential Compute Architecture. https:\/\/developer.arm.com\/documentation\/den0125\/0200. Online","author":"ARM Inc.","year":"2022","unstructured":"ARM Inc.2022. Introducing Arm Confidential Compute Architecture. https:\/\/developer.arm.com\/documentation\/den0125\/0200. Online; accessed Dec 19, 2022."},{"key":"e_1_3_2_1_36_1","volume-title":"Runtime Security Subsystem (RSS). https:\/\/tf-m-user-guide.trustedfirmware.org\/platform\/arm\/rss\/readme.html. Online","author":"ARM Inc.","year":"2022","unstructured":"ARM Inc.2022. Runtime Security Subsystem (RSS). https:\/\/tf-m-user-guide.trustedfirmware.org\/platform\/arm\/rss\/readme.html. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_37_1","volume-title":"Attestation and Measured Boot. https:\/\/www.trustedfirmware.org\/docs\/Attestation_and_Measured_Boot.pdf. Online","author":"Ban Tamas","year":"2022","unstructured":"Tamas Ban. 2022. Attestation and Measured Boot. https:\/\/www.trustedfirmware.org\/docs\/Attestation_and_Measured_Boot.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_38_1","volume-title":"Proceedings of the 15th Conference on USENIX Security Symposium (USENIX Security 06)","author":"Berger Stefan","year":"2006","unstructured":"Stefan Berger, Ram\u00f3n C\u00e1ceres, Kenneth\u00a0A. Goldman, Ronald Perez, Reiner Sailer, and Leendert van Doorn. 2006. vTPM: Virtualizing the Trusted Platform Module. In Proceedings of the 15th Conference on USENIX Security Symposium (USENIX Security 06). Article 21, 305\u2013320\u00a0pages."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/3407023.3407058"},{"key":"e_1_3_2_1_40_1","volume-title":"TPM Genie: Interposer Attacks Against the Trusted Platform Module Serial Bus. White paper","author":"Boone Jeremy","unstructured":"Jeremy Boone. 2018. TPM Genie: Interposer Attacks Against the Trusted Platform Module Serial Bus. White paper. NCC Group. https:\/\/www.nccgroup.com\/globalassets\/about-us\/us\/documents\/tpm-genie.pdf."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1145\/2103799.2103805"},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-011-0124-7"},{"key":"e_1_3_2_1_43_1","volume-title":"Supervisor mode access prevention. https:\/\/lwn.net\/Articles\/517475\/. Online","author":"Corbet Jonathan","year":"2022","unstructured":"Jonathan Corbet. 2012. Supervisor mode access prevention. https:\/\/lwn.net\/Articles\/517475\/. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_44_1","unstructured":"Intel Corporation. 2019. Intel\u00ae SGX Data Center Attestation Primitives (Intel\u00ae SGX DCAP). https:\/\/download.01.org\/intel-sgx\/sgx-dcap\/1.7\/linux\/docs\/Intel_SGX_DCAP_ECDSA_Orientation.pdf."},{"key":"e_1_3_2_1_45_1","unstructured":"Intel Corporation. 2022. Intel\u00ae 64 and IA-32 Architectures Software Developer\u2019s Manual. https:\/\/software.intel.com\/content\/www\/us\/en\/develop\/download\/intel-64-and-ia-32-architectures-sdm-combined-volumes-1-2a-2b-2c-2d-3a-3b-3c-3d-and-4.html."},{"key":"e_1_3_2_1_46_1","unstructured":"Victor Costan and Srinivas Devadas. 2016. Intel SGX Explained. Cryptology ePrint Archive Paper 2016\/086. https:\/\/eprint.iacr.org\/2016\/086 https:\/\/eprint.iacr.org\/2016\/086."},{"key":"e_1_3_2_1_47_1","volume-title":"Sanctum: Minimal Hardware Extensions for Strong Software Isolation. In 25th USENIX Security Symposium (USENIX Security 16)","author":"Costan Victor","year":"2016","unstructured":"Victor Costan, Ilia Lebedev, and Srinivas Devadas. 2016. Sanctum: Minimal Hardware Extensions for Strong Software Isolation. In 25th USENIX Security Symposium (USENIX Security 16). 857\u2013874. https:\/\/www.usenix.org\/conference\/usenixsecurity16\/technical-sessions\/presentation\/costan"},{"key":"e_1_3_2_1_48_1","volume-title":"Proceedings of the 7th USENIX Security Symposium. 63\u201378","author":"Cowan Crispin","year":"1998","unstructured":"Crispin Cowan, Calton Pu, Dave Maier, Heather Hinton, and Jonathan Walpole. 1998. StackGuard: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks. In Proceedings of the 7th USENIX Security Symposium. 63\u201378."},{"key":"e_1_3_2_1_49_1","volume-title":"Supervisor Mode Execution Protection. NSA Trusted Computing Conference.","author":"Fischer Stephen","year":"2011","unstructured":"Stephen Fischer. 2011. Supervisor Mode Execution Protection. NSA Trusted Computing Conference."},{"key":"e_1_3_2_1_50_1","volume-title":"Trusted Platform Module Library Part 1: Architecture","author":"Trusted\u00a0Computing Group","unstructured":"Trusted\u00a0Computing Group. 2019. Trusted Platform Module Library Part 1: Architecture. See Group [52], Chapter 37.7.2 External NV, 232\u2013233. https:\/\/trustedcomputinggroup.org\/wp-content\/uploads\/TCG_TPM2_r1p59_Part1_Architecture_pub.pdf"},{"key":"e_1_3_2_1_51_1","volume-title":"Trusted Platform Module Library Part 1: Architecture","author":"Trusted\u00a0Computing Group","unstructured":"Trusted\u00a0Computing Group. 2019. Trusted Platform Module Library Part 1: Architecture. See Group [52], Chapter 25.2.3 \"sensitiveDataOrigin\", 198. https:\/\/trustedcomputinggroup.org\/wp-content\/uploads\/TCG_TPM2_r1p59_Part1_Architecture_pub.pdf"},{"key":"e_1_3_2_1_52_1","unstructured":"Trusted\u00a0Computing Group. 2019. Trusted Platform Module Library Part 1: Architecture (level 00 revision 01.59 ed.). https:\/\/trustedcomputinggroup.org\/wp-content\/uploads\/TCG_TPM2_r1p59_Part1_Architecture_pub.pdf"},{"key":"e_1_3_2_1_53_1","volume-title":"Proceedings of the 3rd Conference on Virtual Machine Research And Technology Symposium -","volume":"3","author":"Haldar Vivek","year":"2004","unstructured":"Vivek Haldar, Deepak Chandra, and Michael Franz. 2004. Semantic Remote Attestation: A Virtual Machine Directed Approach to Trusted Computing. In Proceedings of the 3rd Conference on Virtual Machine Research And Technology Symposium - Volume 3 (VM 04). 29\u201341."},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/3447786.3456243"},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1109\/MINES.2010.162"},{"key":"e_1_3_2_1_56_1","volume-title":"Code-Pointer Integrity. In Proceedings of the 11th USENIX Conference on Operating Systems Design and Implementation (OSDI 14)","author":"Kuznetsov Volodymyr","year":"2014","unstructured":"Volodymyr Kuznetsov, L\u00e1szl\u00f3 Szekeres, Mathias Payer, George Candea, R. Sekar, and Dawn Song. 2014. Code-Pointer Integrity. In Proceedings of the 11th USENIX Conference on Operating Systems Design and Implementation (OSDI 14). 147\u2013163."},{"key":"e_1_3_2_1_57_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00020"},{"key":"e_1_3_2_1_58_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833768"},{"key":"e_1_3_2_1_59_1","volume-title":"AMD RYZEN pro 5000 series mobile processors. https:\/\/www.amd.com\/system\/files\/documents\/amd-security-white-paper.pdf. Online","author":"Malhotra Akash","year":"2022","unstructured":"Akash Malhotra. 2022. AMD RYZEN pro 5000 series mobile processors. https:\/\/www.amd.com\/system\/files\/documents\/amd-security-white-paper.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_60_1","volume-title":"30th USENIX Security Symposium (USENIX Security 21)","author":"Li Mengyuan","year":"2021","unstructured":"Mengyuan Li and Yinqian Zhang and Huibo Wang and Kang Li and Yueqiang Cheng. 2021. CIPHERLEAKS: Breaking Constant-time Cryptography on AMD SEV via the Ciphertext Side Channel. In 30th USENIX Security Symposium (USENIX Security 21). 717\u2013732. https:\/\/www.usenix.org\/conference\/usenixsecurity21\/presentation\/li-mengyuan"},{"key":"e_1_3_2_1_61_1","doi-asserted-by":"publisher","DOI":"10.1145\/1346256.1346278"},{"key":"e_1_3_2_1_62_1","volume-title":"Using the Intel STM for Protected Execution. https:\/\/www.platformsecuritysummit.com\/2018\/speaker\/myers\/STMPE2Intelv84a.pdf. Online","author":"Myers D","year":"2022","unstructured":"Eugene\u00a0D Myers. 2018. Using the Intel STM for Protected Execution. https:\/\/www.platformsecuritysummit.com\/2018\/speaker\/myers\/STMPE2Intelv84a.pdf. Online; accessed Dec 17, 2022."},{"key":"e_1_3_2_1_63_1","volume-title":"A survey of published attacks on Intel SGX. arXiv preprint arXiv:2006.13598","author":"Nilsson Alexander","year":"2020","unstructured":"Alexander Nilsson, Pegah\u00a0Nikbakht Bideh, and Joakim Brorsson. 2020. A survey of published attacks on Intel SGX. arXiv preprint arXiv:2006.13598 (2020)."},{"key":"e_1_3_2_1_64_1","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD53861.2021.00013"},{"key":"e_1_3_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.32"},{"key":"e_1_3_2_1_66_1","doi-asserted-by":"publisher","DOI":"10.1145\/3564625.3564648"},{"key":"e_1_3_2_1_67_1","volume-title":"25th USENIX Security Symposium (USENIX Security 16)","author":"Raj Himanshu","year":"2016","unstructured":"Himanshu Raj, Stefan Saroiu, Alec Wolman, Ronald Aigner, Jeremiah Cox, Paul England, Chris Fenner, Kinshuman Kinshumann, Jork Loeser, Dennis Mattoon, Magnus Nystrom, David Robinson, Rob Spiger, Stefan Thom, and David Wooten. 2016. fTPM: A Software-Only Implementation of a TPM Chip. In 25th USENIX Security Symposium (USENIX Security 16). 841\u2013856. https:\/\/www.usenix.org\/conference\/usenixsecurity16\/technical-sessions\/presentation\/raj"},{"key":"e_1_3_2_1_68_1","volume-title":"Introducing CloudLab: Scientific Infrastructure for Advancing Cloud Architectures and Applications","author":"Ricci Robert","year":"2014","unstructured":"Robert Ricci, Eric Eide, and CloudLab Team. 2014. Introducing CloudLab: Scientific Infrastructure for Advancing Cloud Architectures and Applications. ; login:: the magazine of USENIX & SAGE 39, 6 (2014), 36\u201338."},{"key":"e_1_3_2_1_69_1","volume-title":"13th USENIX Security Symposium (USENIX Security 04)","author":"Sailer Reiner","year":"2004","unstructured":"Reiner Sailer, Xiaolan Zhang, Trent Jaeger, and Leendert Van\u00a0Doorn. 2004. Design and implementation of a TCG-based integrity measurement architecture.. In 13th USENIX Security Symposium (USENIX Security 04). 223\u2013238."},{"key":"e_1_3_2_1_70_1","doi-asserted-by":"publisher","unstructured":"Vincent Scarlata Carlos Rozas Monty Wiseman David Grawrock and Claire Vishik. 2008. TPM Virtualization: Building a General Framework. Vieweg+Teubner 43\u201356. https:\/\/doi.org\/10.1007\/978-3-8348-9452-6_4","DOI":"10.1007\/978-3-8348-9452-6_4"},{"key":"e_1_3_2_1_71_1","doi-asserted-by":"publisher","DOI":"10.1145\/1030083.1030124"},{"key":"e_1_3_2_1_72_1","doi-asserted-by":"publisher","unstructured":"Frederic Stumpf and Claudia Eckert. 2008. Enhancing Trusted Platform Modules with Hardware-Based Virtualization Techniques. In 2008 Second International Conference on Emerging Security Information Systems and Technologies. 1\u20139. https:\/\/doi.org\/10.1109\/SECURWARE.2008.23","DOI":"10.1109\/SECURWARE.2008.23"},{"key":"e_1_3_2_1_73_1","doi-asserted-by":"publisher","DOI":"10.3390\/s18113807"},{"key":"e_1_3_2_1_74_1","doi-asserted-by":"publisher","DOI":"10.3390\/s22093586"},{"key":"e_1_3_2_1_75_1","volume-title":"Proceedings of the 2017 USENIX Conference on Usenix Annual Technical Conference (USENIX ATC 17)","author":"Tsai Chia-Che","year":"2017","unstructured":"Chia-Che Tsai, Donald\u00a0E. Porter, and Mona Vij. 2017. Graphene-SGX: A Practical Library OS for Unmodified Applications on SGX. In Proceedings of the 2017 USENIX Conference on Usenix Annual Technical Conference (USENIX ATC 17). 645\u2013658."},{"key":"e_1_3_2_1_76_1","volume-title":"27th USENIX Security Symposium (USENIX Security 18)","author":"Van\u00a0Bulck Jo","year":"2018","unstructured":"Jo Van\u00a0Bulck, Marina Minkin, Ofir Weisse, Daniel Genkin, Baris Kasikci, Frank Piessens, Mark Silberstein, Thomas\u00a0F Wenisch, Yuval Yarom, and Raoul Strackx. 2018. Foreshadow: Extracting the Keys to the Intel SGX Kingdom with Transient Out-of-Order Execution. In 27th USENIX Security Symposium (USENIX Security 18). 991\u20131008."},{"key":"e_1_3_2_1_77_1","unstructured":"Arjan van\u00a0de Ven. [n. d.]. New Security Enhancements in Red Hat Enterprise Linux v.3 update 3. https:\/\/static.redhat.com\/legacy\/f\/pdf\/rhel\/WHP0006US_Execshield.pdf."},{"key":"e_1_3_2_1_78_1","doi-asserted-by":"publisher","DOI":"10.1109\/TCC.2023.3243891"},{"key":"e_1_3_2_1_79_1","volume-title":"Information and Communications Security (ICICS","author":"Wang Juan","year":"2017","unstructured":"Juan Wang, Feng Xiao, Jianwei Huang, Daochen Zha, Chengyang Fan, Wei Hu, and Huanguo Zhang. 2018. A Security-Enhanced vTPM 2.0 for Cloud Computing. In Information and Communications Security (ICICS 2017). 557\u2013569."},{"key":"e_1_3_2_1_80_1","volume-title":"Protecting data in-use from firmware and physical attacks. Black Hat","author":"Weis Stephen","year":"2014","unstructured":"Stephen Weis. 2014. Protecting data in-use from firmware and physical attacks. Black Hat (2014)."},{"key":"e_1_3_2_1_81_1","unstructured":"Richard Wilkins and Brian Richardson. 2013. UEFI secure boot in modern computer security solutions. In UEFI forum. 1\u201310."}],"event":{"name":"ACSAC '23: Annual Computer Security Applications Conference","location":"Austin TX USA","acronym":"ACSAC '23"},"container-title":["Annual Computer Security Applications Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3627106.3627112","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3627106.3627112","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,22]],"date-time":"2025-08-22T17:37:06Z","timestamp":1755884226000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3627106.3627112"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,12,4]]},"references-count":81,"alternative-id":["10.1145\/3627106.3627112","10.1145\/3627106"],"URL":"https:\/\/doi.org\/10.1145\/3627106.3627112","relation":{},"subject":[],"published":{"date-parts":[[2023,12,4]]},"assertion":[{"value":"2023-12-04","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}