{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,29]],"date-time":"2026-05-29T13:13:21Z","timestamp":1780060401987,"version":"3.54.0"},"publisher-location":"New York, NY, USA","reference-count":145,"publisher":"ACM","license":[{"start":{"date-parts":[[2026,6,20]],"date-time":"2026-06-20T00:00:00Z","timestamp":1781913600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"DOI":"10.13039\/100000001","name":"NSF (National Science Foundation)","doi-asserted-by":"publisher","award":["2019285"],"award-info":[{"award-number":["2019285"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"NSF (National Science Foundation)","doi-asserted-by":"publisher","award":["2313433"],"award-info":[{"award-number":["2313433"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100006502","name":"Defense Sciences Office, DARPA","doi-asserted-by":"publisher","award":["N66001-21-C-4018"],"award-info":[{"award-number":["N66001-21-C-4018"]}],"id":[{"id":"10.13039\/100006502","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2026,6,21]]},"DOI":"10.1145\/3745756.3809240","type":"proceedings-article","created":{"date-parts":[[2026,5,29]],"date-time":"2026-05-29T12:52:21Z","timestamp":1780059141000},"page":"808-824","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Ringmaster: How to juggle high-throughput host OS system calls from TrustZone TEEs"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0000-2368-1177","authenticated-orcid":false,"given":"Richard Thomas","family":"Habeeb","sequence":"first","affiliation":[{"name":"Department of Computer Science, Yale University, New Haven, CT, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7181-1730","authenticated-orcid":false,"given":"Man-Ki","family":"Yoon","sequence":"additional","affiliation":[{"name":"North Carolina State University, Raleigh, NC, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1180-9433","authenticated-orcid":false,"given":"Hao","family":"Chen","sequence":"additional","affiliation":[{"name":"CertiK, Hong Kong, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8184-7649","authenticated-orcid":false,"given":"Zhong","family":"Shao","sequence":"additional","affiliation":[{"name":"Yale University, New Haven, CT, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2026,6,20]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2021.24057"},{"key":"e_1_3_2_1_2_1","volume-title":"Network and Distributed Systems Security Symposium (NDSS '18)","author":"Ahmad Adil","year":"2018","unstructured":"Adil Ahmad, Kyungtae Kim, Muhammad Ihsanulhaq Sarfaraz, and Byoungyoung Lee. 2018. OBLIVIATE: A data oblivious filesystem for Intel SGX. In Network and Distributed Systems Security Symposium (NDSS '18). The Internet Society, San Diego, CA, USA, 15 pages."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484782"},{"key":"e_1_3_2_1_4_1","volume-title":"31st USENIX Security Symposium (USENIX Security '22)","author":"Aliaj Esmerald","year":"2022","unstructured":"Esmerald Aliaj, Ivan De Oliveira Nunes, and Gene Tsudik. 2022. GAROTA: Generalized active Root-Of-Trust architecture (for tiny embedded devices). In 31st USENIX Security Symposium (USENIX Security '22). USENIX Association, Boston, MA, 2243\u20132260. https:\/\/www.usenix.org\/conference\/usenixsecurity22\/presentation\/aliaj"},{"key":"e_1_3_2_1_5_1","unstructured":"Ardupilot. [n. d.]. Ardupilot. Available: https:\/\/ardupilot.org\/."},{"key":"e_1_3_2_1_6_1","unstructured":"Ardupilot. 2024. NVIDIA TX2 as a Companion Compute. Available: https:\/\/ardupilot.org\/dev\/docs\/companion-computer-nvidia-tx2.html."},{"key":"e_1_3_2_1_7_1","unstructured":"ARM. 2009. Building a secure system using TrustZone technology. Technical Report. ARM."},{"key":"e_1_3_2_1_8_1","unstructured":"ARM 2013. ARM Generic Interrupt Controller Architecture Version 2.0 \u2014 Architecture Specification. ARM. https:\/\/developer.arm.com\/Architectures\/Generic%20Interrupt%20Controller"},{"key":"e_1_3_2_1_9_1","unstructured":"ARM 2014. ARM CoreLink TZC-400 TrustZone Address Space Controller Technical Reference Manual. ARM. https:\/\/developer.arm.com\/documentation\/ddi0504\/c\/"},{"key":"e_1_3_2_1_10_1","volume-title":"12th USENIX Symposium on Operating Systems Design and Implementation (OSDI '16)","author":"Arnautov Sergei","year":"2016","unstructured":"Sergei Arnautov, Bohdan Trach, Franz Gregor, Thomas Knauth, Andre Martin, Christian Priebe, Joshua Lind, Divya Muthukumaran, Dan O'Keeffe, Mark L. Stillwell, David Goltzsche, Dave Eyers, R\u00fcdiger Kapitza, Peter Pietzuch, and Christof Fetzer. 2016. SCONE: Secure Linux containers with Intel SGX. In 12th USENIX Symposium on Operating Systems Design and Implementation (OSDI '16). USENIX Association, Savannah, GA, 689\u2013703. https:\/\/www.usenix.org\/conference\/osdi16\/technical-sessions\/presentation\/arnautov"},{"key":"e_1_3_2_1_11_1","volume-title":"PID Controllers: Theory, Design, and Tuning","author":"\u00c5str\u00f6m Karl J","unstructured":"Karl J \u00c5str\u00f6m and Tore H\u00e4gglund. 1995. PID Controllers: Theory, Design, and Tuning (2nd ed.). Instrument Society of America, Research Triangle Park, NC.","edition":"2"},{"key":"e_1_3_2_1_12_1","unstructured":"Jens Axboe. [n. d.]. liburing. Available: https:\/\/github.com\/axboe\/liburing."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/800228.806932"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1165389.945462"},{"key":"e_1_3_2_1_15_1","volume-title":"Proceedings of the 17th Workshop on Hot Topics in Operating Systems (HotOS XVII). ACM New York, NY, USA","author":"Baumann Andrew","year":"2019","unstructured":"Andrew Baumann, Jonathan Appavoo, Orran Krieger, and Timothy Roscoe. 2019. A fork() in the road. In Proceedings of the 17th Workshop on Hot Topics in Operating Systems (HotOS XVII). ACM New York, NY, USA, Bertinoro, Italy, 14\u201322."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.5555\/2685048.2685070"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/2799647"},{"key":"e_1_3_2_1_18_1","volume-title":"Hexacon.","author":"Berard David","unstructured":"David Berard and Vincent Dehors. 2022. I feel a draft. Opening the doors and windows 0-click RCE on the Tesla Model3. In Hexacon. Vancouver, BC."},{"key":"e_1_3_2_1_19_1","unstructured":"David Berard and Vincent Dehors. 2024. 0-Click RCE on the Tesla infotainment through cellular network. In OffensiveCon. Available: https:\/\/www.synacktiv.com\/sites\/default\/files\/2024-05\/tesla_0_click_rce_cellular_network_offensivecon2024.pdf."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.101677"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2735960.2735980"},{"key":"e_1_3_2_1_22_1","unstructured":"Alan Burns and Robert Davis. 2022. Mixed criticality systems\u2014A review. Technical Report 13. Department of Computer Science University of York. 1\u201369 pages."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"crossref","first-page":"29","DOI":"10.1145\/2492007.2492018","article-title":"The air gap: SCADA's enduring security myth","volume":"56","author":"Byres Eric","year":"2013","unstructured":"Eric Byres. 2013. The air gap: SCADA's enduring security myth. Commun. ACM 56, 8 (2013), 29\u201331.","journal-title":"Commun. ACM"},{"key":"e_1_3_2_1_24_1","volume-title":"Black Hat USA","author":"Cai Zhiqiang","year":"2019","unstructured":"Zhiqiang Cai, Aohui Wang, and Wenkai Zhang. 2019. 0-days & mitigations: Roadways to exploit and secure connected BMW cars. In Black Hat USA 2019. Las Vegas, NV."},{"key":"e_1_3_2_1_25_1","unstructured":"Canonical. 2023. A CTO's guide to real-time Linux. Technical Report. Canonical."},{"key":"e_1_3_2_1_26_1","volume-title":"2019 IEEE Symposium Series on Computational Intelligence (SSCI '19)","author":"Changalvala Raghu","year":"2019","unstructured":"Raghu Changalvala and Hafiz Malik. 2019. Lidar data integrity verification for autonomous vehicle using 3D data hiding. In 2019 IEEE Symposium Series on Computational Intelligence (SSCI '19). IEEE, 1219\u20131225."},{"key":"e_1_3_2_1_27_1","volume-title":"20th USENIX Security Symposium (USENIX Security '11)","author":"Checkoway Stephen","year":"2011","unstructured":"Stephen Checkoway, Damon McCoy, Brian Kantor, Danny Anderson, Hovav Shacham, Stefan Savage, Karl Koscher, Alexei Czeskis, Franziska Roesner, and Tadayoshi Kohno. 2011. Comprehensive experimental analyses of automotive attack surfaces. In 20th USENIX Security Symposium (USENIX Security '11). USENIX Association, San Francisco, CA, 16 pages. https:\/\/www.usenix.org\/conference\/usenix-security-11\/comprehensive-experimental-analyses-automotive-attack-surfaces"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/2451116.2451145"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/1353535.1346284"},{"key":"e_1_3_2_1_30_1","unstructured":"Darren Cofer John Backes Andrew Gacek Daniel DaCosta Michael Whalen Ihor Kuz Gerwin Klein Gernot Heiser Lee Pike Adam Foltzer Michal Podhradsky Douglas Stuart Jason Grahan and Brett Wilson. 2017. Secure mathematically-assured composition of control models. Technical Report. Air Force Research Laboratory (RITA)."},{"key":"e_1_3_2_1_31_1","unstructured":"Johnathan Corbet. 2019. Ringing in a new asynchronous I\/O API. Available: https:\/\/lwn.net\/Articles\/776703\/."},{"key":"e_1_3_2_1_32_1","unstructured":"Johnathan Corbet. 2020. The rapid growth of io_uring. https:\/\/lwn.net\/Articles\/810414\/."},{"key":"e_1_3_2_1_33_1","volume-title":"Black Hat USA.","author":"Costin Andrei","unstructured":"Andrei Costin and Aur\u00e9lien Francillon. 2012. Ghost in the air (traffic): On insecurity of ADS-B protocol and practical attacks on ADS-B devices. In Black Hat USA. Las Vegas, NV."},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/2541940.2541986"},{"key":"e_1_3_2_1_35_1","unstructured":"CVEdetails.com. [n. d.]. Threat overview for Linux kernel. Available: https:\/\/www.cvedetails.com\/product\/47\/Linux-Linux-Kernel.html."},{"key":"e_1_3_2_1_36_1","unstructured":"Thijs Alkemade Daan Keuper. 2018. The Connected Car: Ways to get unauthorized access and potential implications. Technical Report. Computest."},{"key":"e_1_3_2_1_37_1","volume-title":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security (CCS '22)","author":"Deng Yunjie","year":"2022","unstructured":"Yunjie Deng, Chenxu Wang, Shunchang Yu, Shiqing Liu, Zhenyu Ning, Kevin Leach, Jin Li, Shoumeng Yan, Zhengyu He, Jiannong Cao, and Fengwei Zhang. 2022. StrongBox: A GPU TEE on ARM endpoints. In Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security (CCS '22). ACM New York, NY, USA, Los Angeles, CA, USA, 769\u2013783."},{"key":"e_1_3_2_1_38_1","unstructured":"DJI. 2024. Drone Security White Paper (Version 3.0). Technical Report. DJI."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/RTCSA.2018.00016"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/3098243.3098261"},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.tra.2015.04.003"},{"key":"e_1_3_2_1_42_1","volume-title":"Technical Report","author":"Falliere Nicolas","unstructured":"Nicolas Falliere, Liam O Murchu, and Eric Chien. 2011. W32.Stuxnet dossier. Technical Report. Symantec Corp."},{"key":"e_1_3_2_1_43_1","unstructured":"Daniel Friedman and David Wise. 1976. CONS should not evaluate its arguments. Technical Report. Indiana University."},{"key":"e_1_3_2_1_44_1","volume-title":"2023 IEEE Symposium on Security and Privacy (IEEE S&P '23)","author":"Giner Lukas","year":"2023","unstructured":"Lukas Giner, Stefan Steinegger, Antoon Purnal, Maria Eichlseder, Thomas Unterluggauer, Stefan Mangard, and Daniel Gruss. 2023. Scatter and split securely: Defeating cache contention and occupancy attacks. In 2023 IEEE Symposium on Security and Privacy (IEEE S&P '23). IEEE, 2273\u20132287."},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1145\/3081333.3081349"},{"key":"e_1_3_2_1_46_1","volume-title":"2025 Annual Computer Security Applications Conference (ACSAC '25)","author":"Habeeb Richard","year":"2025","unstructured":"Richard Habeeb, Hao Chen, Man-Ki Yoon, and Zhong Shao. 2025. It's a nonstop PARTEE! Practical multi-enclave availability through partitioning and asynchrony. In 2025 Annual Computer Security Applications Conference (ACSAC '25). IEEE, Honolulu, HI, 228\u2013244."},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/1506409.1506429"},{"key":"e_1_3_2_1_48_1","volume-title":"Network and Distributed Systems Security Symposium (NDSS '23)","author":"Han Seungkyun","year":"2023","unstructured":"Seungkyun Han and Jinsoo Jang. 2023. MyTEE: Own the trusted execution environment on embedded devices. In Network and Distributed Systems Security Symposium (NDSS '23). The Internet Society, San Diego, CA."},{"key":"e_1_3_2_1_49_1","doi-asserted-by":"crossref","first-page":"5","DOI":"10.1002\/spe.4380200104","article-title":"Fast allocation and deallocation of memory based on object lifetimes. Software","volume":"20","author":"Hanson David R","year":"1990","unstructured":"David R Hanson. 1990. Fast allocation and deallocation of memory based on object lifetimes. Software: Practice and Experience 20, 1 (1990), 5\u201312.","journal-title":"Practice and Experience"},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1145\/3649499"},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1145\/3338507.3358615"},{"key":"e_1_3_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1145\/1435458.1435461"},{"key":"e_1_3_2_1_53_1","volume-title":"IEEE 8th World Forum on Internet of Things (WF-IoT '22)","author":"Heiser Gernot","year":"2022","unstructured":"Gernot Heiser, Lucy Parker, Peter Chubb, Ivan Velickovic, and Ben Leslie. 2022. Can we put the \"S\" into IoT?. In IEEE 8th World Forum on Internet of Things (WF-IoT '22). IEEE, 1\u20136."},{"key":"e_1_3_2_1_54_1","unstructured":"Mario Herger. 2020. How TeleGuidance Helps Zoox Vehicles to Navigate Difficult Traffic Scenarios. Available: https:\/\/thelastdriverlicenseholder.com\/2020\/11\/12\/how-teleguidance-helps-zoox-vehicles-to-navigate-difficult-traffic-scenarios\/."},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1145\/2451116.2451146"},{"key":"e_1_3_2_1_56_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2022.24057"},{"key":"e_1_3_2_1_57_1","volume-title":"2022 USENIX Annual Technical Conference (USENIX ATC '22)","author":"Jia Yuekai","year":"2022","unstructured":"Yuekai Jia, Shuang Liu, Wenhao Wang, Yu Chen, Zhengde Zhai, Shoumeng Yan, and Zhengyu He. 2022. HyperEnclave: An open and cross-platform trusted execution environment. In 2022 USENIX Annual Technical Conference (USENIX ATC '22). USENIX Association, Carlsbad, CA, 437\u2013454. https:\/\/www.usenix.org\/conference\/atc22\/presentation\/jia-yuekai"},{"key":"e_1_3_2_1_58_1","volume-title":"PSpSys: A time-predictable mixed-criticality system architecture based on ARM TrustZone. Journal of Systems Architecture 123","author":"Jiang Zhe","year":"2022","unstructured":"Zhe Jiang, Pan Dong, Ran Wei, Qingling Zhao, Yankai Wang, Dizhong Zhu, Yan Zhuang, and Neil Audsley. 2022. PSpSys: A time-predictable mixed-criticality system architecture based on ARM TrustZone. Journal of Systems Architecture 123 (2022). Issue 102368."},{"key":"e_1_3_2_1_59_1","volume-title":"First International Workshop on MicroKernels for Embedded Systems","author":"Kaiser Robert","year":"2007","unstructured":"Robert Kaiser and Stephan Wagner. 2007. Evolution of the PikeOS microkernel. In First International Workshop on MicroKernels for Embedded Systems (Sydney, Australia) (MIKES '07)."},{"key":"e_1_3_2_1_60_1","unstructured":"Ali Kani. 2022. NVIDIA DRIVE Thor Strikes AI Performance Balance Uniting AV and Cockpit on a Single Computer. Available: https:\/\/blogs.nvidia.com\/blog\/2022\/09\/20\/drive-thor\/."},{"key":"e_1_3_2_1_61_1","doi-asserted-by":"publisher","DOI":"10.1002\/rob.21513"},{"key":"e_1_3_2_1_62_1","volume-title":"15th Asian Symposium on Programming Languages and Systems (APLAS '17)","author":"Kim Jieung","year":"2017","unstructured":"Jieung Kim, Vilhelm Sj\u00f6berg, Ronghui Gu, and Zhong Shao. 2017. Safety and liveness of MCS lock\u2014layer by layer. In 15th Asian Symposium on Programming Languages and Systems (APLAS '17). Springer, Suzhou, China, 273\u2013297."},{"key":"e_1_3_2_1_63_1","volume-title":"Seonghoon Jeong, Jo-Hee Park, and Huy Kang Kim.","author":"Kim Kyounggon","year":"2021","unstructured":"Kyounggon Kim, Jun Seok Kim, Seonghoon Jeong, Jo-Hee Park, and Huy Kang Kim. 2021. Cybersecurity for autonomous vehicles: Review of attacks and defense. Computers & Security 103 (2021). Issue 102150."},{"key":"e_1_3_2_1_64_1","volume-title":"2013 International Conference on Connected Vehicles and Expo (ICCVE '13)","author":"Kim Se Won","year":"2013","unstructured":"Se Won Kim, Chiyoung Lee, MooWoong Jeon, Hae Young Kwon, Hyun Woo Lee, and Chuck Yoo. 2013. Secure device access for automotive software. In 2013 International Conference on Connected Vehicles and Expo (ICCVE '13). IEEE, 177\u2013181."},{"key":"e_1_3_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1145\/1629575.1629596"},{"key":"e_1_3_2_1_66_1","doi-asserted-by":"publisher","DOI":"10.5555\/646764.703989"},{"key":"e_1_3_2_1_67_1","volume-title":"2010 IEEE Symposium on Security and Privacy (IEEE S&P '10)","author":"Koscher Karl","year":"2010","unstructured":"Karl Koscher, Alexei Czeskis, Franziska Roesner, Shwetak Patel, Tadayoshi Kohno, Stephen Checkoway, Damon McCoy, Brian Kantor, Danny Anderson, Hovav Shacham, and Stefan Savage. 2010. Experimental security analysis of a modern automobile. In 2010 IEEE Symposium on Security and Privacy (IEEE S&P '10). IEEE, Oakland, CA, USA, 447\u2013462."},{"key":"e_1_3_2_1_68_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2924410"},{"key":"e_1_3_2_1_69_1","unstructured":"Doug Lea and Wolfram Gloger. 1996. A Memory Allocator. Available: https:\/\/www.cs.tufts.edu\/~nr\/cs257\/archive\/doug-lea\/malloc.html."},{"key":"e_1_3_2_1_70_1","doi-asserted-by":"publisher","DOI":"10.1145\/3342195.3387532"},{"key":"e_1_3_2_1_71_1","unstructured":"Robert M. Lee Michael J Assante and Tim Conway. 2016. Analysis of the cyber attack on the Ukrainian power grid. Technical Report. SANS ICS E-ISAC Washington DC."},{"key":"e_1_3_2_1_72_1","volume-title":"2014 USENIX Annual Technical Conference (USENIX ATC '14)","author":"Li Yanlin","year":"2014","unstructured":"Yanlin Li, Jonathan McCune, James Newsome, Adrian Perrig, Brandon Baker, and Will Drewry. 2014. MiniBox: A two-way sandbox for x86 native code. In 2014 USENIX Annual Technical Conference (USENIX ATC '14). USENIX Association, Philadelphia, PA, 409\u2013420. https:\/\/www.usenix.org\/conference\/atc14\/technical-sessions\/presentation\/li_yanlin"},{"key":"e_1_3_2_1_73_1","volume-title":"25th USENIX Security Symposium (USENIX Security '16)","author":"Lipp Moritz","year":"2016","unstructured":"Moritz Lipp, Daniel Gruss, Raphael Spreitzer, Cl\u00e9mentine Maurice, and Stefan Mangard. 2016. ARMageddon: Cache attacks on mobile devices. In 25th USENIX Security Symposium (USENIX Security '16). USENIX Association, Austin, TX, 549\u2013564. https:\/\/www.usenix.org\/conference\/usenixsecurity16\/technical-sessions\/presentation\/lipp"},{"key":"e_1_3_2_1_74_1","first-page":"2209","article-title":"Seeing is not always believing\": Detecting perception error attacks against autonomous vehicles","volume":"18","author":"Liu Jinshan","year":"2021","unstructured":"Jinshan Liu and Jung-Min Park. 2021. \"Seeing is not always believing\": Detecting perception error attacks against autonomous vehicles. IEEE Transactions on Dependable and Secure Computing 18, 5 (2021), 2209\u20132223.","journal-title":"IEEE Transactions on Dependable and Secure Computing"},{"key":"e_1_3_2_1_75_1","doi-asserted-by":"publisher","DOI":"10.1145\/3086439.3086443"},{"key":"e_1_3_2_1_76_1","doi-asserted-by":"publisher","DOI":"10.1145\/3278122.3278137"},{"key":"e_1_3_2_1_77_1","volume-title":"Proceedings of the IEEE\/CVF Conference on Computer Vision and Pattern Recognition (CVPR '19)","author":"Liu Ziwei","year":"2019","unstructured":"Ziwei Liu, Zhongqi Miao, Xiaohang Zhan, Jiayun Wang, Boqing Gong, and Stella X Yu. 2019. Large-scale long-tailed recognition in an open world. In Proceedings of the IEEE\/CVF Conference on Computer Vision and Pattern Recognition (CVPR '19). Computer Vision Foundation, 2537\u20132546."},{"key":"e_1_3_2_1_78_1","doi-asserted-by":"publisher","DOI":"10.4230\/LIPIcs.ECRTS.2017.6"},{"key":"e_1_3_2_1_79_1","doi-asserted-by":"publisher","DOI":"10.1145\/3576841.3585934"},{"key":"e_1_3_2_1_80_1","volume-title":"Symposium on Vehicles Security and Privacy (VehicleSec '24)","author":"Marazzi Michele","year":"2024","unstructured":"Michele Marazzi, Stefano Longari, Carminati Michele, and Stefano Zanero. 2024. Securing LiDAR communication through watermark-based tampering detection. In Symposium on Vehicles Security and Privacy (VehicleSec '24). The Internet Society, San Diego, CA, USA, 9 pages."},{"key":"e_1_3_2_1_81_1","volume-title":"\u03bcRTZVisor: A secure and safe real-time hypervisor. Electronics 6, 4","author":"Martins Jos\u00e9","year":"2017","unstructured":"Jos\u00e9 Martins, Jo\u00e3o Alves, Jorge Cabral, Adriano Tavares, and Sandro Pinto. 2017. \u03bcRTZVisor: A secure and safe real-time hypervisor. Electronics 6, 4 (2017), 31 pages."},{"key":"e_1_3_2_1_82_1","volume-title":"29th Real-Time and Embedded Technology and Applications Symposium (RTAS '23)","author":"Martins Jos\u00e9","year":"2023","unstructured":"Jos\u00e9 Martins and Sandro Pinto. 2023. Shedding light on static partitioning hypervisors for ARM-based mixed-criticality systems. In 29th Real-Time and Embedded Technology and Applications Symposium (RTAS '23). IEEE, San Antonio, Texas, 40\u201353."},{"key":"e_1_3_2_1_83_1","volume-title":"Workshop on Next Generation Real-Time Embedded Systems (NG-RES '20","volume":"14","author":"Martins Jos\u00e9","year":"2020","unstructured":"Jos\u00e9 Martins, Adriano Tavares, Marco Solieri, Marko Bertogna, and Sandro Pinto. 2020. Bao: A lightweight static partitioning hypervisor for modern multi-core embedded systems. In Workshop on Next Generation Real-Time Embedded Systems (NG-RES '20, Vol. 77). Schloss Dagstuhl - Leibniz-Zentrum f\u00fcr Informatik, Dagstuhl, Germany, 3:1\u20133:14."},{"key":"e_1_3_2_1_84_1","volume-title":"USENIX Annual Technical Conference (USENIX ATC '96)","author":"McVoy Larry","year":"1996","unstructured":"Larry McVoy and Carl Staelin. 1996. lmbench: Portable tools for performance analysis. In USENIX Annual Technical Conference (USENIX ATC '96). USENIX Association, San Diego, CA, USA, 279\u2013294."},{"key":"e_1_3_2_1_85_1","doi-asserted-by":"publisher","DOI":"10.1145\/103727.103729"},{"key":"e_1_3_2_1_86_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICAA52185.2022.00010"},{"key":"e_1_3_2_1_87_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00005"},{"key":"e_1_3_2_1_88_1","unstructured":"Alex Nehmy. 2022. The air gap is dead. It's time for industrial organisations to embrace the cloud. Available: https:\/\/www.paloaltonetworks.com\/cybersecurity-perspectives\/the-air-gap-is-dead."},{"key":"e_1_3_2_1_89_1","volume-title":"Black Hat USA","author":"Nie Sen","year":"2017","unstructured":"Sen Nie, Ling Liu, and Yuefeng Du. 2017. Free-Fall: Hacking Tesla from wireless to CAN bus. In Black Hat USA 2017. Las Vegas, NV."},{"key":"e_1_3_2_1_90_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISIE.2018.8433781"},{"key":"e_1_3_2_1_91_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3152781"},{"key":"e_1_3_2_1_92_1","doi-asserted-by":"publisher","DOI":"10.1145\/3064176.3064219"},{"key":"e_1_3_2_1_93_1","doi-asserted-by":"publisher","DOI":"10.1109\/RTAS.2019.00032"},{"key":"e_1_3_2_1_94_1","volume-title":"43rd Annual Conference of the IEEE Industrial Electronics Society (IECON '17)","author":"Pinto Sandro","year":"2017","unstructured":"Sandro Pinto, Andr\u00e9 Oliveira, Jorge Pereira, Jorge Cabral, Jo\u00e3o Monteiro, and Adriano Tavares. 2017. Lightweight multicore virtualization architecture exploiting ARM TrustZone. In 43rd Annual Conference of the IEEE Industrial Electronics Society (IECON '17). IEEE, Beijing, China, 3562\u20133567."},{"key":"e_1_3_2_1_95_1","first-page":"2","article-title":"Towards a TrustZone-assisted hypervisor for real-time embedded systems","volume":"16","author":"Pinto Sandro","year":"2016","unstructured":"Sandro Pinto, Jorge Pereira, Tiago Gomes, Mongkol Ekpanyapong, and Adriano Tavares. 2016. Towards a TrustZone-assisted hypervisor for real-time embedded systems. IEEE Computer Architecture Letters 16, 2 (Oct. 2016), 158\u2013161.","journal-title":"IEEE Computer Architecture Letters"},{"key":"e_1_3_2_1_96_1","doi-asserted-by":"publisher","DOI":"10.4230\/LIPIcs.ECRTS.2017.4"},{"key":"e_1_3_2_1_97_1","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3291047","article-title":"Demystifying ARM TrustZone: A comprehensive survey","volume":"51","author":"Pinto Sandro","year":"2019","unstructured":"Sandro Pinto and Nuno Santos. 2019. Demystifying ARM TrustZone: A comprehensive survey. Comput. Surveys 51, 6 (2019), 1\u201336.","journal-title":"Comput. Surveys"},{"key":"e_1_3_2_1_98_1","unstructured":"Promises\/A+ Organization. 2014. An open standard for sound interoperable JavaScript promises\u2014by implementers for implementers. Available: https:\/\/promisesaplus.com\/."},{"key":"e_1_3_2_1_99_1","unstructured":"PX4. [n. d.]. PX4 Guide (main) \u2014 Companion Computers. Available: https:\/\/docs.px4.io\/main\/en\/companion_computer\/."},{"key":"e_1_3_2_1_100_1","volume-title":"2017 IEEE Symposium on Security and Privacy (IEEE S&P '17)","author":"Quarta Davide","year":"2017","unstructured":"Davide Quarta, Marcello Pogliani, Mario Polino, Federico Maggi, Andrea Maria Zanchettin, and Stefano Zanero. 2017. An experimental security analysis of an industrial robot controller. In 2017 IEEE Symposium on Security and Privacy (IEEE S&P '17). IEEE, San Jose, CA, 268\u2013286."},{"key":"e_1_3_2_1_101_1","unstructured":"Ralf Ramsauer Jan Kiszka Daniel Lohmann and Wolfgang Mauerer. 2017. Look mum no VM exits!(almost). (2017). arXiv preprint arXiv:1705.06932."},{"key":"e_1_3_2_1_102_1","volume-title":"Black Hat Asia","author":"Rodday Nils","year":"2016","unstructured":"Nils Rodday. 2016. Hacking a professional drone. Available: https:\/\/www.blackhat.com\/docs\/asia-16\/materials\/asia-16-Rodday-Hacking-A-Professional-Drone.pdf. In Black Hat Asia 2016. Singapore."},{"key":"e_1_3_2_1_103_1","doi-asserted-by":"publisher","DOI":"10.1145\/1400097.1400108"},{"key":"e_1_3_2_1_104_1","volume-title":"Proceedings of the 2015 IEEE Trustcom\/BigDataSE\/ISPA (Trustcom '15)","author":"Sabt Mohamed","year":"2015","unstructured":"Mohamed Sabt, Mohammed Achemlal, and Abdelmadjid Bouabdallah. 2015. Trusted execution environment: What it is, and what it is not. In Proceedings of the 2015 IEEE Trustcom\/BigDataSE\/ISPA (Trustcom '15). IEEE, Helsinki, Finland, 57\u201364."},{"key":"e_1_3_2_1_105_1","volume-title":"2015 International Conference on Hardware\/Software Codesign and System Synthesis (CODES+ISSS '15)","author":"Saidi Selma","year":"2015","unstructured":"Selma Saidi, Rolf Ernst, Sascha Uhrig, Henrik Theiling, and Beno\u00eet Dupont de Dinechin. 2015. The shift to multicores in real-time and safety-critical systems. In 2015 International Conference on Hardware\/Software Codesign and System Synthesis (CODES+ISSS '15). IEEE, Amsterdam, Netherlands, 220\u2013229."},{"key":"e_1_3_2_1_106_1","volume-title":"6th International Workshop on Operating Systems Platforms for Embedded Real-Time Applications (OSPERT '10)","author":"Sangorrin Daniel","year":"2010","unstructured":"Daniel Sangorrin, Shinya Honda, and Hiroaki Takada. 2010. Dual operating system architecture for real-time embedded systems. In 6th International Workshop on Operating Systems Platforms for Embedded Real-Time Applications (OSPERT '10)."},{"key":"e_1_3_2_1_107_1","doi-asserted-by":"publisher","DOI":"10.2197\/ipsjtrans.5.47"},{"key":"e_1_3_2_1_108_1","doi-asserted-by":"publisher","DOI":"10.11309\/jssst.29.4_182"},{"key":"e_1_3_2_1_109_1","volume-title":"Network and Distributed Systems Security Symposium (NDSS '23)","author":"Schiller Nico","year":"2023","unstructured":"Nico Schiller, Merlin Chlosta, Moritz Schloegel, Nils Bars, Thorsten Eisenhofer, Tobias Scharnowski, Felix Domke, Lea Sch\u00f6nherr, and Thorsten Holz. 2023. Drone security and the mysterious case of DJI's DroneID.. In Network and Distributed Systems Security Symposium (NDSS '23). The Internet Society, San Diego, CA."},{"key":"e_1_3_2_1_110_1","doi-asserted-by":"publisher","DOI":"10.1109\/RTSS52674.2021.00015"},{"key":"e_1_3_2_1_111_1","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2001.936213"},{"key":"e_1_3_2_1_112_1","doi-asserted-by":"publisher","DOI":"10.1145\/3373376.3378469"},{"key":"e_1_3_2_1_113_1","volume-title":"19th International Conference on Cryptographic Hardware and Embedded Systems (CHES '17)","author":"Shin Hocheol","year":"2017","unstructured":"Hocheol Shin, Dohyun Kim, Yujin Kwon, and Yongdae Kim. 2017. Illusion and dazzle: Adversarial optical channel exploits against lidars for automotive applications. In 19th International Conference on Cryptographic Hardware and Embedded Systems (CHES '17). Springer, Taipei, Taiwan, 445\u2013467."},{"key":"e_1_3_2_1_114_1","doi-asserted-by":"publisher","DOI":"10.1145\/2897845.2897885"},{"key":"e_1_3_2_1_115_1","volume-title":"Network and Distributed Systems Security Symposium (NDSS '17)","author":"Shinde Shweta","year":"2017","unstructured":"Shweta Shinde, Dat Le Tien, Shruti Tople, and Prateek Saxena. 2017. Panoply: Low-TCB Linux applications with SGX enclaves. In Network and Distributed Systems Security Symposium (NDSS '17). The Internet Society, San Diego, CA, USA."},{"key":"e_1_3_2_1_116_1","volume-title":"9th USENIX Symposium on Operating Systems Design and Implementation. USENIX Association","author":"Soares Livio","year":"2010","unstructured":"Livio Soares and Michael Stumm. 2010. FlexSC: Flexible system call scheduling with Exception-Less system calls. In 9th USENIX Symposium on Operating Systems Design and Implementation. USENIX Association, Vancouver, BC. https:\/\/www.usenix.org\/conference\/osdi10\/flexsc-flexible-system-call-scheduling-exception-less-system-calls"},{"key":"e_1_3_2_1_117_1","unstructured":"Tim Starks and David DiMolfetta. 2023. Downed U.S. drone points to cyber vulnerabilities. Available: https:\/\/www.washingtonpost.com\/politics\/2023\/03\/16\/downed-us-drone-points-cyber-vulnerabilities\/."},{"key":"e_1_3_2_1_118_1","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2018.2855563"},{"key":"e_1_3_2_1_119_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134098"},{"key":"e_1_3_2_1_120_1","unstructured":"SYSGO. [n. d.]. PikeOS \u2014 VirtIO. Available: https:\/\/www.sysgo.com\/virtio."},{"key":"e_1_3_2_1_121_1","volume-title":"Proceedings of the 7th Symposium on Operating Systems Design and Implementation (OSDI '06)","author":"Ta-Min Richard","year":"2006","unstructured":"Richard Ta-Min, Lionel Litty, and David Lie. 2006. Splitting interfaces: Making trust between applications and operating systems configurable. In Proceedings of the 7th Symposium on Operating Systems Design and Implementation (OSDI '06). USENIX Association, Seattle, WA, USA, 279\u2013292."},{"key":"e_1_3_2_1_122_1","unstructured":"The Linux Foundation. [n. d.]. Automotive Grade Linux. Available: https:\/\/www.automotivelinux.org\/."},{"key":"e_1_3_2_1_123_1","volume-title":"Fifth Workshop on Computer Architecture Research with RISC-V (CARRV '21)","author":"Thomas Alex","year":"2021","unstructured":"Alex Thomas, Stephan Kaminsky, Dayeol Lee, Dawn Song, and Krste Asanovic. 2021. ERTOS: Enclaves in real-time operating systems. In Fifth Workshop on Computer Architecture Research with RISC-V (CARRV '21). Virtual."},{"key":"e_1_3_2_1_124_1","volume-title":"Open Confidential Computing Conference (OC3 '21)","author":"Tian Hongliang","year":"2021","unstructured":"Hongliang Tian. 2021. Re-architect Occlum for the next-gen Intel SGX. Available: https:\/\/www.youtube.com\/watch?v=3qQHrUEzFX4. In Open Confidential Computing Conference (OC3 '21)."},{"key":"e_1_3_2_1_125_1","volume-title":"2016 International Conference on Advances in Computing, Communications and Informatics (ICACCI '16)","author":"Toumassian Sebouh","year":"2016","unstructured":"Sebouh Toumassian, Rico Werner, and Axel Sikora. 2016. Performance measurements for hypervisors on embedded ARM processors. In 2016 International Conference on Advances in Computing, Communications and Informatics (ICACCI '16). IEEE, 851\u2013855."},{"key":"e_1_3_2_1_126_1","unstructured":"Josh Triplett. 2022. Spawning processes faster and easier with io_uring. Available: https:\/\/lpc.events\/event\/16\/contributions\/1213\/attachments\/1012\/1945\/io-uring-spawn.pdf. In Linux Plumber's Conference 2022 (LPC Refereed Track)."},{"key":"e_1_3_2_1_127_1","volume-title":"USENIX Annual Technical Conference (USENIX ATC '17)","author":"Tsai Chia-Che","year":"2017","unstructured":"Chia-Che Tsai, Donald E. Porter, and Mona Vij. 2017. Graphene-SGX: A practical library OS for unmodified applications on SGX. In USENIX Annual Technical Conference (USENIX ATC '17). USENIX Association, Santa Clara, CA, 645\u2013658. https:\/\/www.usenix.org\/conference\/atc17\/technical-sessions\/presentation\/tsai"},{"key":"e_1_3_2_1_128_1","unstructured":"UNSW Trustworthy Systems Group. [n. d.]. SMACCM: TS in the DARPA HACMS Program. Available: https:\/\/trustworthy.systems\/projects\/OLD\/SMACCM\/."},{"key":"e_1_3_2_1_129_1","volume-title":"16th USENIX Symposium on Operating Systems Design and Implementation (OSDI '22)","author":"Hof Alexander Van't","year":"2022","unstructured":"Alexander Van't Hof and Jason Nieh. 2022. BlackBox: a container security monitor for protecting containers on untrusted operating systems. In 16th USENIX Symposium on Operating Systems Design and Implementation (OSDI '22). USENIX Association, Carlsbad, CA, 683\u2013700."},{"key":"e_1_3_2_1_130_1","volume-title":"22nd International Conference on Embedded and Real-Time Computing Systems and Applications (RTCSA '16)","author":"Vivekanandan Prasanth","year":"2016","unstructured":"Prasanth Vivekanandan, Gonzalo Garcia, Heechul Yun, and Shawn Keshmiri. 2016. A simplex architecture for intelligent and safe unmanned aerial vehicles. In 22nd International Conference on Embedded and Real-Time Computing Systems and Applications (RTCSA '16). IEEE, Daegu, Korea (South), 69\u201375."},{"key":"e_1_3_2_1_131_1","volume-title":"13th USENIX Symposium on Operating Systems Design and Implementation (OSDI '18)","author":"Volos Stavros","year":"2018","unstructured":"Stavros Volos, Kapil Vaswani, and Rodrigo Bruno. 2018. Graviton: Trusted execution environments on GPUs. In 13th USENIX Symposium on Operating Systems Design and Implementation (OSDI '18). USENIX Association, Carlsbad, CA, 681\u2013696. https:\/\/www.usenix.org\/conference\/osdi18\/presentation\/volos"},{"key":"e_1_3_2_1_132_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833604"},{"key":"e_1_3_2_1_133_1","unstructured":"Ralf-Philipp Weinmann and Benedikt Schmotzle. 2020. TBONE-a zero-click exploit for Tesla MCUs. Technical Report. ComSecuris."},{"key":"e_1_3_2_1_134_1","volume-title":"Hans Niklas Jacob, and Oleg Drokin","author":"Werling Christian","year":"2023","unstructured":"Christian Werling, Niclas K\u00fchnapfel, Hans Niklas Jacob, and Oleg Drokin. 2023. Jailbreaking an electric vehicle in 2023. In Black Hat USA. Las Vegas, NV."},{"key":"e_1_3_2_1_135_1","unstructured":"WindRiver. [n. d.]. VxWorks Safety PLanforms. Available: https:\/\/www.windriver.com\/products\/vxworks\/safety-platforms."},{"key":"e_1_3_2_1_136_1","doi-asserted-by":"publisher","DOI":"10.1145\/2656045.2656066"},{"key":"e_1_3_2_1_137_1","volume-title":"Security analysis of drones systems: Attacks, limitations, and recommendations. Internet of Things 11","author":"Yaacoub Jean-Paul","year":"2020","unstructured":"Jean-Paul Yaacoub, Hassan Noura, Ola Salman, and Ali Chehab. 2020. Security analysis of drones systems: Attacks, limitations, and recommendations. Internet of Things 11 (2020)."},{"key":"e_1_3_2_1_138_1","volume-title":"Network and Distributed Systems Security Symposium (NDSS '24)","author":"Yan Huaiyu","year":"2024","unstructured":"Huaiyu Yan, Zhen Ling, Haobo Li, Lan Luo, Xinhui Shao, Kai Dong, Ping Jiang, Ming Yang, Junzhou Luo, and Xinwen Fu. 2024. LDR: Secure and efficient Linux driver runtime for embedded TEE systems. In Network and Distributed Systems Security Symposium (NDSS '24). The Internet Society, San Diego, CA, USA."},{"key":"e_1_3_2_1_139_1","doi-asserted-by":"publisher","DOI":"10.1145\/3055004.3055010"},{"key":"e_1_3_2_1_140_1","doi-asserted-by":"publisher","DOI":"10.1109\/RTAS.2013.6531076"},{"key":"e_1_3_2_1_141_1","doi-asserted-by":"publisher","DOI":"10.1109\/RTAS.2014.6925999"},{"key":"e_1_3_2_1_142_1","doi-asserted-by":"publisher","DOI":"10.1109\/RTAS.2013.6531079"},{"key":"e_1_3_2_1_143_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFOCOM.2018.8486293"},{"key":"e_1_3_2_1_144_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3363205"},{"key":"e_1_3_2_1_145_1","doi-asserted-by":"publisher","DOI":"10.1109\/RTAS58335.2023.00026"}],"event":{"name":"MobiSys '26: 24th Annual International Conference on Mobile Systems, Applications and Services","location":"University of Cambridge Cambridge United Kingdom","acronym":"MobiSys '26","sponsor":["SIGMOBILE ACM Special Interest Group on Mobility of Systems, Users, Data and Computing","SIGOPS ACM Special Interest Group on Operating Systems"]},"container-title":["Proceedings of the 24th Annual International Conference on Mobile Systems, Applications and Services"],"original-title":[],"deposited":{"date-parts":[[2026,5,29]],"date-time":"2026-05-29T12:52:39Z","timestamp":1780059159000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3745756.3809240"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,6,20]]},"references-count":145,"alternative-id":["10.1145\/3745756.3809240","10.1145\/3745756"],"URL":"https:\/\/doi.org\/10.1145\/3745756.3809240","relation":{},"subject":[],"published":{"date-parts":[[2026,6,20]]},"assertion":[{"value":"2026-06-20","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}