{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,18]],"date-time":"2026-07-18T18:33:57Z","timestamp":1784399637658,"version":"3.55.0"},"reference-count":71,"publisher":"Association for Computing Machinery (ACM)","issue":"9","license":[{"start":{"date-parts":[[2024,4,25]],"date-time":"2024-04-25T00:00:00Z","timestamp":1714003200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Comput. Surv."],"published-print":{"date-parts":[[2024,10,31]]},"abstract":"<jats:p>Intel Trust Domain Extensions (TDX) is an architectural extension in the 4th Generation Intel Xeon Scalable Processor that supports confidential computing. TDX allows the deployment of virtual machines in the Secure-Arbitration Mode (SEAM) with encrypted CPU state and memory, integrity protection, and remote attestation. TDX aims at enforcing hardware-assisted isolation for virtual machines and minimize the attack surface exposed to host platforms, which are considered to be untrustworthy or adversarial in the confidential computing\u2019s new threat model. TDX can be leveraged by regulated industries or sensitive data holders to outsource their computations and data with end-to-end protection in public cloud infrastructures.<\/jats:p>\n          <jats:p>This article aims at providing a comprehensive understanding of TDX to potential adopters, domain experts, and security researchers looking to leverage the technology for their own purposes. We adopt a top-down approach, starting with high-level security principles and moving to low-level technical details of TDX. Our analysis is based on publicly available documentation and source code, offering insights from security researchers outside of Intel.<\/jats:p>","DOI":"10.1145\/3652597","type":"journal-article","created":{"date-parts":[[2024,3,14]],"date-time":"2024-03-14T12:23:26Z","timestamp":1710419006000},"page":"1-33","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":81,"title":["Intel TDX Demystified: A Top-Down Approach"],"prefix":"10.1145","volume":"56","author":[{"ORCID":"https:\/\/orcid.org\/0009-0001-8234-2260","authenticated-orcid":false,"given":"Pau-Chen","family":"Cheng","sequence":"first","affiliation":[{"name":"IBM Research, Yorktown Heights, NY, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0561-1279","authenticated-orcid":false,"given":"Wojciech","family":"Ozga","sequence":"additional","affiliation":[{"name":"IBM Research Europe, Zurich, Switzerland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0004-4674-3384","authenticated-orcid":false,"given":"Enriquillo","family":"Valdez","sequence":"additional","affiliation":[{"name":"IBM Research, Yorktown Heights, NY, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0290-5367","authenticated-orcid":false,"given":"Salman","family":"Ahmed","sequence":"additional","affiliation":[{"name":"IBM Research, Yorktown Heights, NY, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9624-2669","authenticated-orcid":false,"given":"Zhongshu","family":"Gu","sequence":"additional","affiliation":[{"name":"IBM Research, Yorktown Heights, NY, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6143-1064","authenticated-orcid":false,"given":"Hani","family":"Jamjoom","sequence":"additional","affiliation":[{"name":"IBM Research, Yorktown Heights, NY, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-0150-1055","authenticated-orcid":false,"given":"Hubertus","family":"Franke","sequence":"additional","affiliation":[{"name":"IBM Research, Yorktown Heights, NY, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-9789-8397","authenticated-orcid":false,"given":"James","family":"Bottomley","sequence":"additional","affiliation":[{"name":"IBM Research, Yorktown Heights, NY, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2024,4,25]]},"reference":[{"key":"e_1_3_4_2_2","unstructured":"2018. CVE-2017-5753. Retrieved March 29 2024 from https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2017-5753"},{"key":"e_1_3_4_3_2","unstructured":"2018. CVE-2017-5754. Retrieved March 29 2024 from https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2017-5754"},{"key":"e_1_3_4_4_2","article-title":"Strengthening VM isolation with integrity protection and more","year":"2020","unstructured":"AMD. 2020. Strengthening VM isolation with integrity protection and more. AMD (2020).","journal-title":"AMD"},{"key":"e_1_3_4_5_2","first-page":"689","volume-title":"Proceedings of the OSDI","year":"2016","unstructured":"Sergei Arnautov, Bohdan Trach, Franz Gregor, Thomas Knauth, Andre Martin, Christian Priebe, Joshua Lind, Divya Muthukumaran, Dan O\u2019Keeffe, Mark L. Stillwell, David Goltzsche, Dave Eyers, R\u00fcdiger Kapitza, Peter Pietzuch, and Christof Fetzer. 2016. Scone: Secure linux containers with intel sgx. In Proceedings of the OSDI. 689\u2013703."},{"key":"e_1_3_4_6_2","first-page":"971","volume-title":"Proceedings of the 31st USENIX Security Symposium (USENIX Security 22)","author":"Barberis Enrico","year":"2022","unstructured":"Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida. 2022. Branch history injection: On the effectiveness of hardware mitigations against \\(\\lbrace\\) cross-privilege \\(\\rbrace\\) spectre-v2 attacks. In Proceedings of the 31st USENIX Security Symposium (USENIX Security 22). 971\u2013988."},{"key":"e_1_3_4_7_2","doi-asserted-by":"publisher","DOI":"10.1145\/2799647"},{"key":"e_1_3_4_8_2","doi-asserted-by":"crossref","first-page":"687","DOI":"10.1145\/2897845.2897895","volume-title":"Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security","author":"Beekman Jethro G.","year":"2016","unstructured":"Jethro G. Beekman, John L. Manferdelli, and David Wagner. 2016. Attestation transparency: Building secure internet services for legacy clients. In Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security. 687\u2013698."},{"key":"e_1_3_4_9_2","first-page":"222","volume-title":"Proceedings of the 12th European Conference on Computer Systems","author":"Behl Johannes","year":"2017","unstructured":"Johannes Behl, Tobias Distler, and R\u00fcdiger Kapitza. 2017. Hybrids on steroids: SGX-based high performance BFT. In Proceedings of the 12th European Conference on Computer Systems. 222\u2013237."},{"key":"e_1_3_4_10_2","doi-asserted-by":"publisher","DOI":"10.1145\/1054907.1054910"},{"key":"e_1_3_4_11_2","first-page":"1","article-title":"SecureBlue++: CPU support for secure execution","author":"Boivie Rick","year":"2012","unstructured":"Rick Boivie and Peter Williams. 2012. SecureBlue++: CPU support for secure execution. IBM, IBM Research Division, RC25287 (WAT1205-070) (2012), 1\u20139.","journal-title":"IBM, IBM Research Division, RC25287 (WAT1205-070)"},{"key":"e_1_3_4_12_2","first-page":"11","volume-title":"Proceedings of the WOOT","author":"Brasser Ferdinand","year":"2017","unstructured":"Ferdinand Brasser, Urs M\u00fcller, Alexandra Dmitrienko, Kari Kostiainen, Srdjan Capkun, and Ahmad-Reza Sadeghi. 2017. Software grand exposure: SGX cache attacks are practical. In Proceedings of the WOOT. 11\u201311."},{"key":"e_1_3_4_13_2","first-page":"1","volume-title":"Proceedings of the 17th International Middleware Conference","author":"Brenner Stefan","year":"2016","unstructured":"Stefan Brenner, Colin Wulf, David Goltzsche, Nico Weichbrodt, Matthias Lorenz, Christof Fetzer, Peter Pietzuch, and R\u00fcdiger Kapitza. 2016. Securekeeper: Confidential zookeeper using intel sgx. In Proceedings of the 17th International Middleware Conference. 1\u201313."},{"key":"e_1_3_4_14_2","doi-asserted-by":"crossref","first-page":"142","DOI":"10.1109\/EuroSP.2019.00020","volume-title":"Proceedings of the 2019 IEEE European Symposium on Security and Privacy (EuroS&P)","author":"Chen Guoxing","year":"2019","unstructured":"Guoxing Chen, Sanchuan Chen, Yuan Xiao, Yinqian Zhang, Zhiqiang Lin, and Ten H. Lai. 2019. Sgxpectre: Stealing intel secrets from sgx enclaves via speculative execution. In Proceedings of the 2019 IEEE European Symposium on Security and Privacy (EuroS&P). IEEE, 142\u2013157."},{"key":"e_1_3_4_15_2","unstructured":"Linux Kernel Documentation. 2023. Retrieved March 29 2024 from https:\/\/www.kernel.org\/doc\/Documentation\/x86\/tdx.rst"},{"key":"e_1_3_4_16_2","doi-asserted-by":"publisher","DOI":"10.1145\/3296957.3173204"},{"key":"e_1_3_4_17_2","doi-asserted-by":"crossref","first-page":"765","DOI":"10.1145\/3133956.3134106","volume-title":"Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security","author":"Fisch Ben","year":"2017","unstructured":"Ben Fisch, Dhinakaran Vinayagamurthy, Dan Boneh, and Sergey Gorbunov. 2017. Iron: Functional encryption using Intel SGX. In Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security. 765\u2013782."},{"key":"e_1_3_4_18_2","doi-asserted-by":"crossref","first-page":"386","DOI":"10.1007\/978-3-319-61176-1_22","volume-title":"Proceedings of the Data and Applications Security and Privacy XXXI: 31st Annual IFIP WG 11.3 Conference, DBSec 2017, Philadelphia, PA, USA, July 19-21, 2017","author":"Fuhry Benny","year":"2017","unstructured":"Benny Fuhry, Raad Bahmani, Ferdinand Brasser, Florian Hahn, Florian Kerschbaum, and Ahmad-Reza Sadeghi. 2017. HardIDX: Practical and secure index with SGX. In Proceedings of the Data and Applications Security and Privacy XXXI: 31st Annual IFIP WG 11.3 Conference, DBSec 2017, Philadelphia, PA, USA, July 19-21, 2017. Springer, 386\u2013408."},{"key":"e_1_3_4_19_2","doi-asserted-by":"publisher","DOI":"10.1145\/3065913.3065915"},{"key":"e_1_3_4_20_2","article-title":"Intel trusted execution technology: Hardware-based technology for enhancing server platform security","author":"Greene James","year":"2012","unstructured":"James Greene. 2012. Intel trusted execution technology: Hardware-based technology for enhancing server platform security. Intel Corporation (2012).","journal-title":"Intel Corporation"},{"key":"e_1_3_4_21_2","unstructured":"Zhongshu Gu Heqing Huang Jialong Zhang Dong Su Hani Jamjoom Ankita Lamba Dimitrios Pendarakis and Ian Molloy. 2020. Confidential Inference via Ternary Model Partitioning."},{"key":"e_1_3_4_22_2","first-page":"336","volume-title":"Proceedings of the 2019 49th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN)","author":"Gu Zhongshu","year":"2019","unstructured":"Zhongshu Gu, Hani Jamjoom, Dong Su, Heqing Huang, Jialong Zhang, Tengfei Ma, Dimitrios Pendarakis, and Ian Molloy. 2019. Reaching data confidentiality and model accountability on the caltrain. In Proceedings of the 2019 49th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN). IEEE, 336\u2013348."},{"key":"e_1_3_4_23_2","first-page":"294","volume-title":"Proceedings of the 16th European Conference on Computer Systems","year":"2021","unstructured":"Guerney D. H. Hunt, Ramachandra Pai, Michael V. Le, Hani Jamjoom, Sukadev Bhattiprolu, Rick Boivie, Laurent Dufour, Brad Frey, Mohit Kapur, Kenneth A. Goldman, Ryan Grimm, Janani Janakirman, John M. Ludden, Paul Mackerras, Cathy May, Elaine R. Palmer, Bharata Bhasker Rao, Lawrence Roy, William A. Starke, Jeff Stuecheli, Enriquillo Valdez, and Wendel Voigt. 2021. Confidential computing for OpenPOWER. In Proceedings of the 16th European Conference on Computer Systems. 294\u2013310."},{"key":"e_1_3_4_24_2","unstructured":"IBM. 2020. Retrieved March 29 2024 from https:\/\/github.com\/open-power\/ultravisor"},{"key":"e_1_3_4_25_2","unstructured":"IBM. 2022. Introducing IBM secure execution for linux 1.3.0. Retrieved from https:\/\/www.ibm.com\/docs\/en\/linuxonibm\/pdf\/l130se03.pdf"},{"key":"e_1_3_4_26_2","doi-asserted-by":"crossref","unstructured":"Vedvyas Shanbhogue Deepak Gupta and Ravi Sahita. 2019. Security analysis of processor instruction set architecture for enforcing control-flow integrity. In Proceedings of the 8th International Workshop on Hardware and Architectural Support for Security and Privacy. 1\u201311.","DOI":"10.1145\/3337167.3337175"},{"key":"e_1_3_4_27_2","unstructured":"Intel. 2021. Intel\u00ae trust domain cpu architectural extensions specification. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/733582"},{"key":"e_1_3_4_28_2","unstructured":"Intel. 2022. Retrieved from https:\/\/www.intel.com\/content\/www\/us\/en\/download\/738875\/738876\/intel-trust-domain-extension-intel-tdx-module.html"},{"key":"e_1_3_4_29_2","unstructured":"Intel. 2022. Retrieved March 29 2024 from https:\/\/www.intel.com\/content\/www\/us\/en\/download\/738874\/intel-trust-domain-extension-intel-tdx-loader.html"},{"key":"e_1_3_4_30_2","unstructured":"Intel. 2022. Retrieved March 29 2024 from https:\/\/github.com\/intel\/tdx\/"},{"key":"e_1_3_4_31_2","unstructured":"Intel. 2022. Retrieved March 29 2024 from https:\/\/intel.github.io\/ccc-linux-guest-hardening-docs\/security-spec.html"},{"key":"e_1_3_4_32_2","article-title":"Intel\u00ae architecture memory encryption technologies","year":"2022","unstructured":"Intel. 2022. Intel\u00ae architecture memory encryption technologies. Intel Corporation (2022).","journal-title":"Intel Corporation"},{"key":"e_1_3_4_33_2","unstructured":"Intel. 2022. Intel\u00ae TDX loader interface specification. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/733584"},{"key":"e_1_3_4_34_2","unstructured":"Intel. 2022. TDX Virtual Firmware (TDVF). Retrieved March 29 2024 from https:\/\/github.com\/tianocore\/edk2-staging\/tree\/TDVF"},{"key":"e_1_3_4_35_2","unstructured":"Intel. 2023. CPUID enumeration and architectural MSRs. Retrieved March 29 2024 from https:\/\/www.intel.com\/content\/www\/us\/en\/developer\/articles\/technical\/software-security-guidance\/technical-documentation\/cpuid-enumeration-and-architectural-msrs.html"},{"key":"e_1_3_4_36_2","unstructured":"Intel. 2023. Device attestation model in confidential computing environment. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/742533"},{"key":"e_1_3_4_37_2","unstructured":"Intel. 2023. Intel TDX Module v1.5 TD Migration Architecture Specification. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/733578"},{"key":"e_1_3_4_38_2","unstructured":"Intel. 2023. Intel TDX module v1.5 TD partitioning architecture specification. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/773039"},{"key":"e_1_3_4_39_2","unstructured":"Intel. 2023. Intel\u00ae TDX connect architecture specification. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/773614"},{"key":"e_1_3_4_40_2","unstructured":"Intel. 2023. Intel\u00ae TDX guest-hypervisor communication interface. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/726790"},{"key":"e_1_3_4_41_2","unstructured":"Intel. 2023. Intel\u00ae TDX module 1.0 specification. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/733568 (2023)."},{"key":"e_1_3_4_42_2","unstructured":"Intel. 2023. Intel\u00ae TDX virtual firmware design guide. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/733585"},{"key":"e_1_3_4_43_2","unstructured":"Intel. 2023. Intel\u00ae trust domain extensions. Retrieved March 29 2024 from https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/690419"},{"key":"e_1_3_4_44_2","article-title":"Protecting vm register state with sev-es","author":"Kaplan David","year":"2017","unstructured":"David Kaplan. 2017. Protecting vm register state with sev-es. AMD (2017).","journal-title":"AMD"},{"key":"e_1_3_4_45_2","article-title":"AMD memory encryption","author":"Kaplan David","year":"2016","unstructured":"David Kaplan, Jeremy Powell, and Tom Woller. 2016. AMD memory encryption. AMD (2016).","journal-title":"AMD"},{"key":"e_1_3_4_46_2","doi-asserted-by":"publisher","DOI":"10.1109\/ISCA.2014.6853210"},{"key":"e_1_3_4_47_2","unstructured":"Thomas Knauth Michael Steiner Somnath Chakrabarti Li Lei Cedric Xing and Mona Vij. 2019. Integrating Remote Attestation with Transport Layer Security."},{"key":"e_1_3_4_48_2","doi-asserted-by":"publisher","DOI":"10.1145\/3399742"},{"key":"e_1_3_4_49_2","volume-title":"Proceedings of the12th USENIX Workshop on Offensive Technologies","author":"Koruyeh Esmaeil Mohammadian","year":"2018","unstructured":"Esmaeil Mohammadian Koruyeh, Khaled Khasawneh, Chengyu Song, and Nael Abu-Ghazaleh. 2018. Spectre returns! Speculation attacks using the return stack buffer. In Proceedings of the12th USENIX Workshop on Offensive Technologies."},{"key":"e_1_3_4_50_2","first-page":"16","volume-title":"Proceedings of the USENIX Security Symposium","author":"Lee Sangho","year":"2017","unstructured":"Sangho Lee, Ming-Wei Shih, Prasun Gera, Taesoo Kim, Hyesoon Kim, and Marcus Peinado. 2017. Inferring fine-grained control flow inside SGX enclaves with branch shadowing. In Proceedings of the USENIX Security Symposium. 16\u201318."},{"key":"e_1_3_4_51_2","first-page":"465","volume-title":"Proceedings of the16th USENIX Symposium on Operating Systems Design and Implementation (OSDI 22)","author":"Li Xupeng","year":"2022","unstructured":"Xupeng Li, Xuheng Li, Christoffer Dall, Ronghui Gu, Jason Nieh, Yousuf Sait, and Gareth Stockwell. 2022. Design and verification of the arm confidential compute architecture. In Proceedings of the16th USENIX Symposium on Operating Systems Design and Implementation (OSDI 22). 465\u2013484."},{"key":"e_1_3_4_52_2","first-page":"285","volume-title":"Proceedings of the 2017 USENIX Annual Technical Conference (USENIX ATC\u201917)","author":"Lind Joshua","year":"2017","unstructured":"Joshua Lind, Christian Priebe, Divya Muthukumaran, Dan O\u2019Keeffe, Pierre-Louis Aublin, Florian Kelbert, Tobias Reiher, David Goltzsche, David Eyers, R\u00fcdiger Kapitza, Christof Fetzer, and Peter Pietzuch. 2017. Glamdring: Automatic application partitioning for intel SGX. In Proceedings of the 2017 USENIX Annual Technical Conference (USENIX ATC\u201917). USENIX Association, Santa Clara, CA, 285\u2013298."},{"key":"e_1_3_4_53_2","doi-asserted-by":"publisher","DOI":"10.1145\/3357033"},{"key":"e_1_3_4_54_2","doi-asserted-by":"crossref","unstructured":"Frank McKeen Ilya Alexandrovich Alex Berenzon Carlos V. Rozas Hisham Shafi Vedvyas Shanbhogue and Uday R. Savagaonkar. 2013. Innovative instructions and software model for isolated execution. In Proceedings of the 2nd International Workshop on Hardware and Architectural Support for Security and Privacy (HASP\u201913) Tel-Aviv Israel 1 pages.","DOI":"10.1145\/2487726.2488368"},{"key":"e_1_3_4_55_2","doi-asserted-by":"crossref","first-page":"69","DOI":"10.1007\/978-3-319-66787-4_4","volume-title":"Proceedings of the Cryptographic Hardware and Embedded Systems\u2013CHES 2017: 19th International Conference, Taipei, Taiwan, September 25-28, 2017","author":"Moghimi Ahmad","year":"2017","unstructured":"Ahmad Moghimi, Gorka Irazoqui, and Thomas Eisenbarth. 2017. Cachezoom: How SGX amplifies the power of cache attacks. In Proceedings of the Cryptographic Hardware and Embedded Systems\u2013CHES 2017: 19th International Conference, Taipei, Taiwan, September 25-28, 2017. Springer, 69\u201390."},{"key":"e_1_3_4_56_2","first-page":"10","volume-title":"Proceedings of the USENIX Security Symposium","author":"Ohrimenko Olga","year":"2016","unstructured":"Olga Ohrimenko, Felix Schuster, C\u00e9dric Fournet, Aastha Mehta, Sebastian Nowozin, Kapil Vaswani, and Manuel Costa. 2016. Oblivious multi-party machine learning on trusted processors. In Proceedings of the USENIX Security Symposium. 10\u201312."},{"key":"e_1_3_4_57_2","doi-asserted-by":"crossref","first-page":"264","DOI":"10.1109\/SP.2018.00025","volume-title":"Proceedings of the 2018 IEEE Symposium on Security and Privacy (SP)","author":"Priebe Christian","year":"2018","unstructured":"Christian Priebe, Kapil Vaswani, and Manuel Costa. 2018. EnclaveDB: A secure database using SGX. In Proceedings of the 2018 IEEE Symposium on Security and Privacy (SP). IEEE, 264\u2013278."},{"key":"e_1_3_4_58_2","doi-asserted-by":"crossref","first-page":"315","DOI":"10.1145\/3587135.3592168","volume-title":"Proceedings of the 20th ACM International Conference on Computing Frontiers","author":"Sahita Ravi","year":"2023","unstructured":"Ravi Sahita, Vedvyas Shanbhogue, Andrew Bresticker, Atul Khare, Atish Patra, Samuel Ortiz, Dylan Reid, and Rajnesh Kanwal. 2023. CoVE: Towards confidential computing on RISC-V platforms. In Proceedings of the 20th ACM International Conference on Computing Frontiers. 315\u2013321."},{"key":"e_1_3_4_59_2","unstructured":"Vinnie Scarlata Simon Johnson James Beaney and Piotr Zmijewski. 2018. Supporting third party attestation for Intel SGX with Intel data center attestation primitives. Retrieved March 29 2024 from https:\/\/cdrdv2-public.intel.com\/671314\/intel-sgx-support-for-third-party-attestation.pdf"},{"key":"e_1_3_4_60_2","doi-asserted-by":"crossref","first-page":"38","DOI":"10.1109\/SP.2015.10","volume-title":"Proceedings of the 2015 IEEE Symposium on Security and Privacy","author":"Schuster Felix","year":"2015","unstructured":"Felix Schuster, Manuel Costa, C\u00e9dric Fournet, Christos Gkantsidis, Marcus Peinado, Gloria Mainar-Ruiz, and Mark Russinovich. 2015. VC3: Trustworthy data analytics in the cloud using SGX. In Proceedings of the 2015 IEEE Symposium on Security and Privacy. IEEE, 38\u201354."},{"key":"e_1_3_4_61_2","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1007\/978-3-319-60876-1_1","volume-title":"Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment: 14th International Conference, DIMVA 2017, Bonn, Germany, July 6-7, 2017","author":"Schwarz Michael","year":"2017","unstructured":"Michael Schwarz, Samuel Weiser, Daniel Gruss, Cl\u00e9mentine Maurice, and Stefan Mangard. 2017. Malware guard extension: Using SGX to conceal cache attacks. In Proceedings of the Detection of Intrusions and Malware, and Vulnerability Assessment: 14th International Conference, DIMVA 2017, Bonn, Germany, July 6-7, 2017. Springer, 3\u201324."},{"key":"e_1_3_4_62_2","unstructured":"Carlos Bilbao Thomas Lendacky. 2023. Linux SVSM (Secure VM Service Module). Retrieved March 29 2024 from https:\/\/github.com\/AMDESE\/linux-svsm"},{"key":"e_1_3_4_63_2","unstructured":"Florian Tram\u00e8r and Dan Boneh. 2019. Slalom: Fast Verifiable and Private Execution of Neural Networks in Trusted Hardware."},{"key":"e_1_3_4_64_2","first-page":"645","volume-title":"Proceedings of the USENIX Annual Technical Conference","author":"Tsai Chia-Che","year":"2017","unstructured":"Chia-Che Tsai, Donald E. Porter, and Mona Vij. 2017. Graphene-SGX: A practical library os for unmodified applications on SGX. In Proceedings of the USENIX Annual Technical Conference. 645\u2013658."},{"key":"e_1_3_4_65_2","doi-asserted-by":"crossref","unstructured":"Rich Uhlig Gil Neiger Dion Rodgers Amy L. Santoni Fernando C. M. Martins Andrew V. Anderson Steven M. Bennett Alain Kagi Felix H. Leung and Larry Smith. 2005. Intel virtualization technology. Computer 38 5 (2005) 48\u201356.","DOI":"10.1109\/MC.2005.163"},{"key":"e_1_3_4_66_2","first-page":"991","volume-title":"Proceedings of the 27th USENIX Security Symposium","author":"Bulck Jo Van","year":"2018","unstructured":"Jo Van Bulck, Marina Minkin, Ofir Weisse, Daniel Genkin, Baris Kasikci, Frank Piessens, Mark Silberstein, Thomas F. Wenisch, Yuval Yarom, and Raoul Strackx. 2018. Foreshadow: Extracting the keys to the intel \\(\\lbrace\\) SGX \\(\\rbrace\\) kingdom with transient out-of-order execution. In Proceedings of the 27th USENIX Security Symposium. USENIX, 991\u20131008."},{"key":"e_1_3_4_67_2","first-page":"1","volume-title":"Proceedings of the 2nd Workshop on System Software for Trusted Execution","author":"Bulck Jo Van","year":"2017","unstructured":"Jo Van Bulck, Frank Piessens, and Raoul Strackx. 2017. SGX-Step: A practical attack framework for precise enclave execution control. In Proceedings of the 2nd Workshop on System Software for Trusted Execution. 1\u20136."},{"key":"e_1_3_4_68_2","first-page":"1041","volume-title":"Proceedings of the 26th USENIX Security Symposium","author":"Bulck Jo Van","year":"2017","unstructured":"Jo Van Bulck, Nico Weichbrodt, R\u00fcdiger Kapitza, Frank Piessens, and Raoul Strackx. 2017. Telling your secrets without page faults: Stealthy page table-based attacks on enclaved execution. In Proceedings of the 26th USENIX Security Symposium. USENIX Association, 1041\u20131056."},{"key":"e_1_3_4_69_2","doi-asserted-by":"crossref","first-page":"88","DOI":"10.1109\/SP.2019.00087","volume-title":"Proceedings of the 2019 IEEE Symposium on Security and Privacy (SP)","author":"Schaik Stephan Van","year":"2019","unstructured":"Stephan Van Schaik, Alyssa Milburn, Sebastian \u00d6sterlund, Pietro Frigo, Giorgi Maisuradze, Kaveh Razavi, Herbert Bos, and Cristiano Giuffrida. 2019. RIDL: Rogue in-flight data load. In Proceedings of the 2019 IEEE Symposium on Security and Privacy (SP). IEEE, 88\u2013105."},{"key":"e_1_3_4_70_2","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134038"},{"key":"e_1_3_4_71_2","doi-asserted-by":"crossref","first-page":"172","DOI":"10.1007\/978-3-642-21599-5_13","volume-title":"Proceedings of the Trust and Trustworthy Computing: 4th International Conference, TRUST 2011, Pittsburgh, PA, USA, June 22-24, 2011","author":"Williams Peter","year":"2011","unstructured":"Peter Williams and Rick Boivie. 2011. CPU support for secure executables. In Proceedings of the Trust and Trustworthy Computing: 4th International Conference, TRUST 2011, Pittsburgh, PA, USA, June 22-24, 2011. Springer, 172\u2013187."},{"key":"e_1_3_4_72_2","first-page":"640","volume-title":"Proceedings of the 2015 IEEE Symposium on Security and Privacy","author":"Xu Yuanzhong","year":"2015","unstructured":"Yuanzhong Xu, Weidong Cui, and Marcus Peinado. 2015. Controlled-channel attacks: Deterministic side channels for untrusted operating systems. In Proceedings of the 2015 IEEE Symposium on Security and Privacy. IEEE, 640\u2013656."}],"container-title":["ACM Computing Surveys"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3652597","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3652597","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T00:03:30Z","timestamp":1750291410000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3652597"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,4,25]]},"references-count":71,"journal-issue":{"issue":"9","published-print":{"date-parts":[[2024,10,31]]}},"alternative-id":["10.1145\/3652597"],"URL":"https:\/\/doi.org\/10.1145\/3652597","relation":{},"ISSN":["0360-0300","1557-7341"],"issn-type":[{"value":"0360-0300","type":"print"},{"value":"1557-7341","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,4,25]]},"assertion":[{"value":"2023-03-27","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2024-03-07","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2024-04-25","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}