{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,5]],"date-time":"2026-03-05T15:47:02Z","timestamp":1772725622727,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":66,"publisher":"ACM","license":[{"start":{"date-parts":[[2025,3,30]],"date-time":"2025-03-30T00:00:00Z","timestamp":1743292800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100006374","name":"China Scholarship Council","doi-asserted-by":"publisher","award":["202406210249"],"award-info":[{"award-number":["202406210249"]}],"id":[{"id":"10.13039\/501100006374","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Singepore Ministry of Education","award":["T1251RES2403,T2EP20222-0026"],"award-info":[{"award-number":["T1251RES2403,T2EP20222-0026"]}]},{"DOI":"10.13039\/501100006374","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["U23B2041,U24A6009"],"award-info":[{"award-number":["U23B2041,U24A6009"]}],"id":[{"id":"10.13039\/501100006374","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,3,30]]},"DOI":"10.1145\/3676641.3716004","type":"proceedings-article","created":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T16:47:32Z","timestamp":1743094052000},"page":"622-638","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":3,"title":["MDPeek: Breaking Balanced Branches in SGX with Memory Disambiguation Unit Side Channels"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1834-4958","authenticated-orcid":false,"given":"Chang","family":"Liu","sequence":"first","affiliation":[{"name":"Tsinghua University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-4682-4220","authenticated-orcid":false,"given":"Shuaihu","family":"Feng","sequence":"additional","affiliation":[{"name":"Zhongguancun Laboratory, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7990-8676","authenticated-orcid":false,"given":"Yuan","family":"Li","sequence":"additional","affiliation":[{"name":"Zhongguancun Laboratory, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5779-9026","authenticated-orcid":false,"given":"Dongsheng","family":"Wang","sequence":"additional","affiliation":[{"name":"Tsinghua University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6546-6907","authenticated-orcid":false,"given":"Wenjian","family":"He","sequence":"additional","affiliation":[{"name":"Huawei Technologies Co., Ltd., Shanghai, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2573-963X","authenticated-orcid":false,"given":"Yongqiang","family":"Lyu","sequence":"additional","affiliation":[{"name":"Tsinghua University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8742-134X","authenticated-orcid":false,"given":"Trevor E.","family":"Carlson","sequence":"additional","affiliation":[{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,3,30]]},"reference":[{"key":"e_1_3_2_1_1_1","first-page":"673","volume-title":"Proceedings of the International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)","author":"Abel Andreas","year":"2019","unstructured":"Andreas Abel and Jan Reineke. uops.info: Characterizing Latency, Throughput, and Port Usage of Instructions on Intel Microarchitectures. In Proceedings of the International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), pages 673--686, 2019."},{"key":"e_1_3_2_1_2_1","first-page":"870","volume-title":"Nicola Tuveri. Port Contention for Fun and Profit. In Symposium on Security and Privacy (SP)","author":"Aldaya Alejandro Cabrera","year":"2019","unstructured":"Alejandro Cabrera Aldaya, Billy Bob Brumley, Sohaib ul Hassan, Cesar Pereida Garc\u00eda, and Nicola Tuveri. Port Contention for Fun and Profit. In Symposium on Security and Privacy (SP), pages 870--887, 2019."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1002\/cta.2283"},{"key":"e_1_3_2_1_4_1","volume-title":"ECE 4750 Computer Architecture Intel Skylake. https:\/\/www.csl.cornell.edu\/courses\/ece4750\/2016f\/handouts\/ ece4750-section-skylake.pdf","author":"Batten Christopher","year":"2015","unstructured":"Christopher Batten. ECE 4750 Computer Architecture Intel Skylake. https:\/\/www.csl.cornell.edu\/courses\/ece4750\/2016f\/handouts\/ ece4750-section-skylake.pdf, 2015."},{"key":"e_1_3_2_1_5_1","first-page":"785","volume-title":"Proceedings of the Conference on Computer and Communications Security (CCS)","author":"Bhattacharyya Atri","year":"2019","unstructured":"Atri Bhattacharyya, Alexandra Sandulescu, Matthias Neugschwandtner, Alessandro Sorniotti, Babak Falsafi, Mathias Payer, and Anil Kurmus. SMoTherSpectre: Exploiting Speculative Execution through Port Contention. In Proceedings of the Conference on Computer and Communications Security (CCS), pages 785--800, 2019."},{"key":"e_1_3_2_1_6_1","volume-title":"Ahmad-Reza Sadeghi. Software Grand Exposure: SGX Cache Attacks Are Practical. In USENIX Workshop on Offensive Technologies (WOOT)","author":"Brasser Ferdinand","year":"2017","unstructured":"Ferdinand Brasser, Urs M\u00fcller, Alexandra Dmitrienko, Kari Kostiainen, Srdjan Capkun, and Ahmad-Reza Sadeghi. Software Grand Exposure: SGX Cache Attacks Are Practical. In USENIX Workshop on Offensive Technologies (WOOT), 2017."},{"key":"e_1_3_2_1_7_1","first-page":"249","volume-title":"Daniel Gruss. A Systematic Evaluation of Transient Execution Attacks and Defenses. In USENIX Security Symposium (USENIX Security)","author":"Canella Claudio","year":"2019","unstructured":"Claudio Canella, Jo Van Bulck, Michael Schwarz, Moritz Lipp, Benjamin Von Berg, Philipp Ortner, Frank Piessens, Dmitry Evtyushkin, and Daniel Gruss. A Systematic Evaluation of Transient Execution Attacks and Defenses. In USENIX Security Symposium (USENIX Security), pages 249--266, 2019."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2019.00020"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/3575693.3575719"},{"key":"e_1_3_2_1_10_1","first-page":"4051","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Constable Scott","year":"2023","unstructured":"Scott Constable, Jo Van Bulck, Xiang Cheng, Yuan Xiao, Cedric Xing, Ilya Alexandrovich, Taesoo Kim, Frank Piessens, Mona Vij, and Mark Silberstein. AEX-Notify: Thwarting Precise Single-Stepping Attacks through Interrupt Awareness for Intel SGX Enclaves. In USENIX Security Symposium (USENIX Security), pages 4051--4068, 2023."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2009.19"},{"key":"e_1_3_2_1_12_1","volume-title":"Memory Disambiguation on Skylake. https:\/\/github.com\/travisdowns\/uarch-bench\/wiki\/Memory- Disambiguation-on-Skylake","author":"Downs Travis","year":"2021","unstructured":"Travis Downs. Memory Disambiguation on Skylake. https:\/\/github.com\/travisdowns\/uarch-bench\/wiki\/Memory- Disambiguation-on-Skylake, 2021."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/MICRO.2016.7783743"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/3296957.3173204"},{"key":"e_1_3_2_1_15_1","volume-title":"Fingerprint Verification Competition","year":"2024","unstructured":"FVC2004. Fingerprint Verification Competition 2024. http:\/\/bias.csr. unibo.it\/fvc2004\/default.asp, 2004."},{"key":"e_1_3_2_1_16_1","first-page":"2256","volume-title":"Daniel Gruss. SQUIP: Exploiting the Scheduler Queue Contention Side Channel. In Symposium on Security and Privacy (SP)","author":"Gast Stefan","year":"2023","unstructured":"Stefan Gast, Jonas Juffinger, Martin Schwarzl, Gururaj Saileshwar, Andreas Kogler, Simone Franza, Markus K\u00f6stl, and Daniel Gruss. SQUIP: Exploiting the Scheduler Queue Contention Side Channel. In Symposium on Security and Privacy (SP), pages 2256--2272, 2023."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/3065913.3065915"},{"key":"e_1_3_2_1_18_1","first-page":"955","volume-title":"Cristiano Giuffrida. Translation Leak-aside Buffer: Defeating Cache Side-channel Protections with TLB Attacks. In USENIX Security Symposium (USENIX Security)","author":"Gras Ben","year":"2018","unstructured":"Ben Gras, Kaveh Razavi, Herbert Bos, and Cristiano Giuffrida. Translation Leak-aside Buffer: Defeating Cache Side-channel Protections with TLB Attacks. In USENIX Security Symposium (USENIX Security), pages 955--972, 2018."},{"key":"e_1_3_2_1_19_1","first-page":"279","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment - International Conference, (DIMVA)","author":"Gruss Daniel","year":"2016","unstructured":"Daniel Gruss, Cl\u00e9mentine Maurice, Klaus Wagner, and Stefan Mangard. FlushFlush: A Fast and Stealthy Cache Attack. In Detection of Intrusions and Malware, and Vulnerability Assessment - International Conference, (DIMVA), pages 279--299, 2016."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-94496-8_4"},{"key":"e_1_3_2_1_21_1","first-page":"299","volume-title":"Marcus Peinado. High-Resolution Side Channels for Untrusted Operating Systems. In USENIX Annual Technical Conference (USENIX ATC)","author":"H\u00e4hnel Marcus","year":"2017","unstructured":"Marcus H\u00e4hnel, Weidong Cui, and Marcus Peinado. High-Resolution Side Channels for Untrusted Operating Systems. In USENIX Annual Technical Conference (USENIX ATC), pages 299--312, 2017."},{"key":"e_1_3_2_1_22_1","first-page":"321","volume-title":"IACR Transactions on Cryptographic Hardware and Embedded Systems","author":"Huo Tianlin","year":"2020","unstructured":"Tianlin Huo, Xiaoni Meng, Wenhao Wang, Chunliang Hao, Pei Zhao, Jian Zhai, and Mingshu Li. Bluethunder: A 2-level Directional Predictor Based Side-Channel Attack against SGX. IACR Transactions on Cryptographic Hardware and Embedded Systems, pages 321--347, 2020."},{"key":"e_1_3_2_1_23_1","unstructured":"Intel. Guidelines for Mitigating Timing Side Channels Against Cryptographic Implementations. https:\/\/www.intel.com\/content\/www\/us\/ en\/developer\/articles\/technical\/software-security-guidance\/securecoding\/ mitigate-timing-side-channel-crypto-implementation.html."},{"key":"e_1_3_2_1_24_1","volume-title":"Intel\u00ae 64 and IA-32 Architectures Software Developer Manuals. https:\/\/www.intel.com\/content\/www\/us\/en\/developer\/articles\/ technical\/intel-sdm.html","year":"2024","unstructured":"Intel. Intel\u00ae 64 and IA-32 Architectures Software Developer Manuals. https:\/\/www.intel.com\/content\/www\/us\/en\/developer\/articles\/ technical\/intel-sdm.html, 2024."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1007\/BF02290176"},{"key":"e_1_3_2_1_26_1","volume-title":"Efficient Algorithms for Shortest Paths in Sparse Networks. Journal of the ACM (JACM), 24(1):1--13","author":"Johnson Donald B","year":"1977","unstructured":"Donald B Johnson. Efficient Algorithms for Shortest Paths in Sparse Networks. Journal of the ACM (JACM), 24(1):1--13, 1977."},{"key":"e_1_3_2_1_27_1","first-page":"1","volume-title":"Symposium on Security and Privacy (SP)","author":"Kocher Paul","year":"2019","unstructured":"Paul Kocher, Jann Horn, Anders Fogh, Daniel Genkin, Daniel Gruss, Werner Haas, Mike Hamburg, Moritz Lipp, Stefan Mangard, Thomas Prescher, et al. Spectre attacks: Exploiting speculative execution. In Symposium on Security and Privacy (SP), pages 1--19, 2019."},{"key":"e_1_3_2_1_28_1","first-page":"557","volume-title":"Marcus Peinado. Inferring Fine-grained Control Flow Inside SGX Enclaves with Branch Shadowing. In USENIX Security Symposium (USENIX Security)","author":"Lee Sangho","year":"2017","unstructured":"Sangho Lee, Ming-Wei Shih, Prasun Gera, Taesoo Kim, Hyesoon Kim, and Marcus Peinado. Inferring Fine-grained Control Flow Inside SGX Enclaves with Branch Shadowing. In USENIX Security Symposium (USENIX Security), pages 557--574, 2017."},{"key":"e_1_3_2_1_29_1","volume-title":"https:\/\/www.ijg.org\/files\/jpegsrc.v9f.tar.gz","author":"Libjpeg Version","year":"2024","unstructured":"libjpeg. Libjpeg Version 9f. https:\/\/www.ijg.org\/files\/jpegsrc.v9f.tar.gz, 2024."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/3341301.3359627"},{"key":"e_1_3_2_1_31_1","first-page":"643","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Lipp Moritz","year":"2022","unstructured":"Moritz Lipp, Daniel Gruss, and Michael Schwarz. AMD Prefetch Attacks through Power and Time. In USENIX Security Symposium (USENIX Security), pages 643--660, 2022."},{"key":"e_1_3_2_1_32_1","first-page":"973","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Lipp Moritz","year":"2018","unstructured":"Moritz Lipp, Michael Schwarz, Daniel Gruss, Thomas Prescher,Werner Haas, Anders Fogh, Jann Horn, Stefan Mangard, Paul Kocher, Daniel Genkin, et al. Meltdown: reading kernel memory from user space. In USENIX Security Symposium (USENIX Security), pages 973--990, 2018."},{"key":"e_1_3_2_1_33_1","first-page":"1","volume-title":"Dongsheng Wang. Leaky MDU: ARM Memory Disambiguation Unit Uncovered and Vulnerabilities Exposed. In Design Automation Conference, (DAC)","author":"Liu Chang","year":"2023","unstructured":"Chang Liu, Yongqiang Lyu, Haixia Wang, Pengfei Qiu, Dapeng Ju, Gang Qu, and Dongsheng Wang. Leaky MDU: ARM Memory Disambiguation Unit Uncovered and Vulnerabilities Exposed. In Design Automation Conference, (DAC), pages 1--6, 2023."},{"key":"e_1_3_2_1_34_1","first-page":"31","volume-title":"Gang Qu. Uncovering and Exploiting AMD Speculative Memory Access Predictors for Fun and Profit. In International Symposium on High-Performance Computer Architecture (HPCA)","author":"Liu Chang","year":"2024","unstructured":"Chang Liu, Dongsheng Wang, Yongqiang Lyu, Pengfei Qiu, Yu Jin, Zhuoyuan Lu, Yinqian Zhang, and Gang Qu. Uncovering and Exploiting AMD Speculative Memory Access Predictors for Fun and Profit. In International Symposium on High-Performance Computer Architecture (HPCA), pages 31--45, 2024."},{"key":"e_1_3_2_1_35_1","volume-title":"llvm-project. https:\/\/github.com\/llvm\/llvm-project","author":"LLVM.","year":"2024","unstructured":"LLVM. llvm-project. https:\/\/github.com\/llvm\/llvm-project, 2024."},{"key":"e_1_3_2_1_36_1","first-page":"783","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Matetic Sinisa","year":"2019","unstructured":"Sinisa Matetic, Karl W\u00fcst, Moritz Schneider, Kari Kostiainen, Ghassan Karame, and Srdjan Capkun. BITE: Bitcoin Lightweight Client Privacy using Trusted Execution. In USENIX Security Symposium (USENIX Security), pages 783--800, 2019."},{"key":"e_1_3_2_1_37_1","volume-title":"https:\/\/github.com\/Mbed-TLS\/mbedtls\/tree\/mbedtls-2.6.1","author":"TLS","year":"2017","unstructured":"Mbedtls. MbedTLS Version 2.6.1. https:\/\/github.com\/Mbed-TLS\/mbedtls\/tree\/mbedtls-2.6.1, 2017."},{"key":"e_1_3_2_1_38_1","volume-title":"Mbedtls version 3.6.1. https:\/\/github.com\/Mbed-TLS\/mbedtls\/tree\/mbedtls-3.6.1","year":"2024","unstructured":"Mbedtls. Mbedtls version 3.6.1. https:\/\/github.com\/Mbed-TLS\/mbedtls\/tree\/mbedtls-3.6.1, 2024."},{"key":"e_1_3_2_1_39_1","volume-title":"https:\/\/github.com\/misc0110\/PTEditor","year":"2024","unstructured":"misc0110. Pteditor. https:\/\/github.com\/misc0110\/PTEditor, 2024."},{"key":"e_1_3_2_1_40_1","first-page":"69","volume-title":"Thomas Eisenbarth. CacheZoom: How SGX Amplifies the Power of Cache Attacks. In International Conference on Cryptographic Hardware and Embedded Systems (CHES)","author":"Moghimi Ahmad","year":"2017","unstructured":"Ahmad Moghimi, Gorka Irazoqui, and Thomas Eisenbarth. CacheZoom: How SGX Amplifies the Power of Cache Attacks. In International Conference on Cryptographic Hardware and Embedded Systems (CHES), pages 69--90, 2017."},{"key":"e_1_3_2_1_41_1","first-page":"469","volume-title":"Berk Sunar. CopyCat: Controlled Instruction-Level Attacks on Enclaves. In USENIX Security Symposium (USENIX Security)","author":"Moghimi Daniel","year":"2020","unstructured":"Daniel Moghimi, Jo Van Bulck, Nadia Heninger, Frank Piessens, and Berk Sunar. CopyCat: Controlled Instruction-Level Attacks on Enclaves. In USENIX Security Symposium (USENIX Security), pages 469--486, 2020."},{"key":"e_1_3_2_1_42_1","volume-title":"You Shall Not Bypass: Employing data dependencies to prevent Bounds Check Bypass. arXiv preprint arXiv:1805.08506","author":"Oleksenko Oleksii","year":"2018","unstructured":"Oleksii Oleksenko, Bohdan Trach, Tobias Reiher, Mark Silberstein, and Christof Fetzer. You Shall Not Bypass: Employing data dependencies to prevent Bounds Check Bypass. arXiv preprint arXiv:1805.08506, 2018."},{"key":"e_1_3_2_1_43_1","first-page":"264","volume-title":"Manuel Costa. EnclaveDB: A Secure Database Using SGX. In Symposium on Security and Privacy (SP)","author":"Priebe Christian","year":"2018","unstructured":"Christian Priebe, Kapil Vaswani, and Manuel Costa. EnclaveDB: A Secure Database Using SGX. In Symposium on Security and Privacy (SP), pages 264--278, 2018."},{"key":"e_1_3_2_1_44_1","first-page":"663","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Puddu Ivan","year":"2021","unstructured":"Ivan Puddu, Moritz Schneider, Miro Haller, and Srdjan \u010dapkun. Frontal Attack: Leaking Control-Flowin SGX via the CPU Frontend. In USENIX Security Symposium (USENIX Security), pages 663--680, 2021."},{"key":"e_1_3_2_1_45_1","first-page":"1451","volume-title":"Cristiano Giuffrida. Rage Against the Machine Clear: A Systematic Analysis of Machine Clears and Their Implications for Transient Execution Attacks. In USENIX Security Symposium (USENIX Security)","author":"Ragab Hany","year":"2021","unstructured":"Hany Ragab, Enrico Barberis, Herbert Bos, and Cristiano Giuffrida. Rage Against the Machine Clear: A Systematic Analysis of Machine Clears and Their Implications for Transient Execution Attacks. In USENIX Security Symposium (USENIX Security), pages 1451--1468, 2021."},{"key":"e_1_3_2_1_46_1","first-page":"431","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Rane Ashay","year":"2015","unstructured":"Ashay Rane, Calvin Lin, and Mohit Tiwari. Raccoon: Closing Digital Side-Channels through Obfuscated Execution. In USENIX Security Symposium (USENIX Security), pages 431--446, 2015."},{"key":"e_1_3_2_1_47_1","first-page":"361","volume-title":"2021 48th Annual International Symposium on Computer Architecture (ISCA)","author":"\u03bcops Dead","year":"2021","unstructured":"Xida Ren, Logan Moody, Mohammadkazem Taram, Matthew Jordan, Dean M Tullsen, and Ashish Venkat. I See Dead \u03bcops: Leaking Secrets via Intel\/AMD Micro-Op Caches. In 2021 48th Annual International Symposium on Computer Architecture (ISCA), pages 361--374, 2021."},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1007\/BF00532240"},{"key":"e_1_3_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSEC.2020.2993896"},{"key":"e_1_3_2_1_50_1","first-page":"753","volume-title":"Daniel Gruss. ZombieLoad: Cross- Privilege-Boundary Data Sampling. In Proceedings of the Conference on Computer and Communications Security (CCS)","author":"Schwarz Michael","year":"2019","unstructured":"Michael Schwarz, Moritz Lipp, Daniel Moghimi, Jo Van Bulck, Julian Stecklina, Thomas Prescher, and Daniel Gruss. ZombieLoad: Cross- Privilege-Boundary Data Sampling. In Proceedings of the Conference on Computer and Communications Security (CCS), pages 753--768, 2019."},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1145\/3307650.3322228"},{"key":"e_1_3_2_1_52_1","first-page":"3165","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Taram Mohammadkazem","year":"2022","unstructured":"Mohammadkazem Taram, Xida Ren, Ashish Venkat, and Dean Tullsen. SecSMT: Securing SMT Processors against Contention-Based Covert Channels. In USENIX Security Symposium (USENIX Security), pages 3165--3182, 2022."},{"key":"e_1_3_2_1_53_1","first-page":"395","volume-title":"Proceedings of the International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)","author":"Taram Mohammadkazem","year":"2019","unstructured":"Mohammadkazem Taram, Ashish Venkat, and Dean Tullsen. Context-Sensitive Fencing: Securing Speculative Execution via Microcode Customization. In Proceedings of the International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), pages 395--410, 2019."},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1109\/MDAT.2022.3152633"},{"key":"e_1_3_2_1_55_1","first-page":"991","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Bulck Jo Van","year":"2018","unstructured":"Jo Van Bulck, Marina Minkin, OfirWeisse, Daniel Genkin, Baris Kasikci, Frank Piessens, Mark Silberstein, Thomas F Wenisch, Yuval Yarom, and Raoul Strackx. Foreshadow: Extracting the Keys to the Intel SGX Kingdom with Transient Out-of-Order Execution. In USENIX Security Symposium (USENIX Security), pages 991--1008, 2018."},{"key":"e_1_3_2_1_56_1","first-page":"1","volume-title":"Raoul Strackx. SGX-Step: A Practical Attack Framework for Precise Enclave Execution Control. In Proceedings of the 2nd Workshop on System Software for Trusted Execution (SysTEX)","author":"Bulck Jo Van","year":"2017","unstructured":"Jo Van Bulck, Frank Piessens, and Raoul Strackx. SGX-Step: A Practical Attack Framework for Precise Enclave Execution Control. In Proceedings of the 2nd Workshop on System Software for Trusted Execution (SysTEX), pages 1--6, 2017."},{"key":"e_1_3_2_1_57_1","first-page":"178","volume-title":"Raoul Strackx. Nemesis: Studying Microarchitectural Timing Leaks in Rudimentary CPU Interrupt Logic. In Proceedings of the Conference on Computer and Communications Security (CCS)","author":"Bulck Jo Van","year":"2018","unstructured":"Jo Van Bulck, Frank Piessens, and Raoul Strackx. Nemesis: Studying Microarchitectural Timing Leaks in Rudimentary CPU Interrupt Logic. In Proceedings of the Conference on Computer and Communications Security (CCS), pages 178--195, 2018."},{"key":"e_1_3_2_1_58_1","first-page":"1041","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Bulck Jo Van","year":"2017","unstructured":"Jo Van Bulck, Nico Weichbrodt, R\u00fcdiger Kapitza, Frank Piessens, and Raoul Strackx. Telling Your Secrets without Page Faults: Stealthy Page Table-Based Attacks on Enclaved Execution. In USENIX Security Symposium (USENIX Security), pages 1041--1056, 2017."},{"key":"e_1_3_2_1_59_1","first-page":"2421","volume-title":"Carl A Gunter. Leaky Cauldron on the Dark Land: Understanding Memory Side-Channel Hazards in SGX. In Proceedings of the Conference on Computer and Communications Security (CCS)","author":"Wang Wenhao","year":"2017","unstructured":"Wenhao Wang, Guoxing Chen, Xiaorui Pan, Yinqian Zhang, XiaoFeng Wang, Vincent Bindschaedler, Haixu Tang, and Carl A Gunter. Leaky Cauldron on the Dark Land: Understanding Memory Side-Channel Hazards in SGX. In Proceedings of the Conference on Computer and Communications Security (CCS), pages 2421--2434, 2017."},{"key":"e_1_3_2_1_60_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP54263.2024.00261"},{"key":"e_1_3_2_1_61_1","doi-asserted-by":"publisher","DOI":"10.1145\/3658644.3690230"},{"key":"e_1_3_2_1_62_1","volume-title":"wolfSSL Version 5.7.2-stable. https:\/\/github.com\/wolfSSL\/wolfssl","author":"SSL.","year":"2024","unstructured":"wolfSSL. wolfSSL Version 5.7.2-stable. https:\/\/github.com\/wolfSSL\/wolfssl, 2024."},{"key":"e_1_3_2_1_63_1","first-page":"640","volume-title":"Marcus Peinado. Controlled- Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems. In Symposium on Security and Privacy (SP)","author":"Xu Yuanzhong","year":"2015","unstructured":"Yuanzhong Xu, Weidong Cui, and Marcus Peinado. Controlled- Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems. In Symposium on Security and Privacy (SP), pages 640--656, 2015."},{"key":"e_1_3_2_1_64_1","first-page":"719","volume-title":"USENIX Security Symposium","author":"Yarom Yuval","year":"2014","unstructured":"Yuval Yarom and Katrina Falkner. FLUSHRELOAD: A High Resolution, Low Noise, L3 Cache Side-Channel Attack. In USENIX Security Symposium, pages 719--732, 2014."},{"key":"e_1_3_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1145\/3620666.3651382"},{"key":"e_1_3_2_1_66_1","doi-asserted-by":"publisher","DOI":"10.1145\/3579371.3589100"}],"event":{"name":"ASPLOS '25: 30th ACM International Conference on Architectural Support for Programming Languages and Operating Systems","location":"Rotterdam Netherlands","acronym":"ASPLOS '25","sponsor":["SIGPLAN ACM Special Interest Group on Programming Languages","SIGOPS ACM Special Interest Group on Operating Systems","SIGARCH ACM Special Interest Group on Computer Architecture"]},"container-title":["Proceedings of the 30th ACM International Conference on Architectural Support for Programming Languages and Operating Systems, Volume 2"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3676641.3716004","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3676641.3716004","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,21]],"date-time":"2025-08-21T11:08:34Z","timestamp":1755774514000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3676641.3716004"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,3,30]]},"references-count":66,"alternative-id":["10.1145\/3676641.3716004","10.1145\/3676641"],"URL":"https:\/\/doi.org\/10.1145\/3676641.3716004","relation":{},"subject":[],"published":{"date-parts":[[2025,3,30]]},"assertion":[{"value":"2025-03-30","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}