{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,5]],"date-time":"2026-06-05T04:28:55Z","timestamp":1780633735975,"version":"3.54.1"},"reference-count":129,"publisher":"Association for Computing Machinery (ACM)","issue":"2","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["Proc. VLDB Endow."],"published-print":{"date-parts":[[2023,10]]},"abstract":"<jats:p>Confidentiality, integrity protection, and high availability, abbreviated to CIA, are essential properties for trustworthy data systems. The rise of cloud computing and the growing demand for multiparty applications however means that building modern CIA systems is more challenging than ever. In response, we present the Confidential Consortium Framework (CCF), a general-purpose foundation for developing secure stateful CIA applications. CCF combines centralized compute with decentralized trust, supporting deployment on untrusted cloud infrastructure and transparent governance by mutually untrusted parties.<\/jats:p>\n          <jats:p>CCF leverages hardware-based trusted execution environments for remotely verifiable confidentiality and code integrity. This is coupled with state machine replication backed by an auditable immutable ledger for data integrity and high availability. CCF enables each service to bring its own application logic, custom multiparty governance model, and deployment scenario, decoupling the operators of nodes from the consortium that governs them. CCF is open-source and available now at https:\/\/github.com\/microsoft\/CCF.<\/jats:p>","DOI":"10.14778\/3626292.3626304","type":"journal-article","created":{"date-parts":[[2023,12,11]],"date-time":"2023-12-11T23:24:55Z","timestamp":1702337095000},"page":"225-240","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":16,"title":["Confidential Consortium Framework: Secure Multiparty Applications with Confidentiality, Integrity, and High Availability"],"prefix":"10.14778","volume":"17","author":[{"given":"Heidi","family":"Howard","sequence":"first","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Fritz","family":"Alder","sequence":"additional","affiliation":[{"name":"imec-DistriNet, KU Leuven, Belgium"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Edward","family":"Ashton","sequence":"additional","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Amaury","family":"Chamayou","sequence":"additional","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Sylvan","family":"Clebsch","sequence":"additional","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Manuel","family":"Costa","sequence":"additional","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Antoine","family":"Delignat-Lavaud","sequence":"additional","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"C\u00e9dric","family":"Fournet","sequence":"additional","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Andrew","family":"Jeffery","sequence":"additional","affiliation":[{"name":"University of Cambridge, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Matthew","family":"Kerner","sequence":"additional","affiliation":[{"name":"Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Fotios","family":"Kounelis","sequence":"additional","affiliation":[{"name":"Imperial College London, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Markus A.","family":"Kuppe","sequence":"additional","affiliation":[{"name":"Microsoft Research"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Julien","family":"Maffre","sequence":"additional","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Mark","family":"Russinovich","sequence":"additional","affiliation":[{"name":"Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Christoph M.","family":"Wintersteiger","sequence":"additional","affiliation":[{"name":"Azure Research, Microsoft"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,10]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/3338466.3358916"},{"key":"e_1_2_1_2_1","unstructured":"Enterprise Ethereum Alliance. 2021. Enterprise Ethereum Alliance Off-Chain Trusted Compute Specification v1.1. https:\/\/entethalliance.github.io\/trusted-computing\/spec.html [Last accessed: 2023-Oct-06].  Enterprise Ethereum Alliance. 2021. Enterprise Ethereum Alliance Off-Chain Trusted Compute Specification v1.1. https:\/\/entethalliance.github.io\/trusted-computing\/spec.html [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_3_1","unstructured":"AMD. 2021. Microsoft Azure Confidential Computing Powered by 3rd Gen EPYC CPUs. https:\/\/community.amd.com\/t5\/business\/microsoft-azure-confidential-computing-powered-by-3rd-gen-epyc\/ba-p\/497796 [Last accessed: 2023-Oct-06].  AMD. 2021. Microsoft Azure Confidential Computing Powered by 3rd Gen EPYC CPUs. https:\/\/community.amd.com\/t5\/business\/microsoft-azure-confidential-computing-powered-by-3rd-gen-epyc\/ba-p\/497796 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_4_1","volume-title":"Nimble: Rollback Protection for Confidential Cloud Services. In 17th USENIX Symposium on Operating Systems Design and Implementation (OSDI 23)","author":"Angel Sebastian","year":"2023","unstructured":"Sebastian Angel , Aditya Basu , Weidong Cui , Trent Jaeger , Stella Lau , Srinath Setty , and Sudheesh Singanamalla . 2023 . Nimble: Rollback Protection for Confidential Cloud Services. In 17th USENIX Symposium on Operating Systems Design and Implementation (OSDI 23) . USENIX Association, Boston, MA, 193--208. https:\/\/www.usenix.org\/system\/files\/osdi23-angel.pdf Sebastian Angel, Aditya Basu, Weidong Cui, Trent Jaeger, Stella Lau, Srinath Setty, and Sudheesh Singanamalla. 2023. Nimble: Rollback Protection for Confidential Cloud Services. In 17th USENIX Symposium on Operating Systems Design and Implementation (OSDI 23). USENIX Association, Boston, MA, 193--208. https:\/\/www.usenix.org\/system\/files\/osdi23-angel.pdf"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/3318464.3386141"},{"key":"e_1_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/3448016.3457312"},{"key":"e_1_2_1_7_1","unstructured":"ARM. 2013. GlobalPlatform based Trusted Execution Environment and TrustZone Ready - The foundations for trusted services. https:\/\/community.arm.com\/cfs-file\/__key\/telligent-evolution-components-attachments\/01-2142-00-00-00-00-51-36\/GlobalPlatform-based-Trusted-Execution-Environment-and-TrustZone-R.pdf [Last accessed: 2023-Oct-06].  ARM. 2013. GlobalPlatform based Trusted Execution Environment and TrustZone Ready - The foundations for trusted services. https:\/\/community.arm.com\/cfs-file\/__key\/telligent-evolution-components-attachments\/01-2142-00-00-00-00-51-36\/GlobalPlatform-based-Trusted-Execution-Environment-and-TrustZone-R.pdf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_8_1","unstructured":"ARM. 2023. Learn the architecture - Introducing Arm Confidential Compute Architecture - Issue 2.0. https:\/\/developer.arm.com\/documentation\/den0125\/latest [Last accessed: 2023-Oct-06].  ARM. 2023. Learn the architecture - Introducing Arm Confidential Compute Architecture - Issue 2.0. https:\/\/developer.arm.com\/documentation\/den0125\/latest [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1721654.1721672"},{"key":"e_1_2_1_10_1","volume-title":"Proceedings of the 12th USENIX Conference on Operating Systems Design and Implementation","author":"Arnautov Sergei","year":"2016","unstructured":"Sergei Arnautov , Bohdan Trach , Franz Gregor , Thomas Knauth , Andre Martin , Christian Priebe , Joshua Lind , Divya Muthukumaran , Dan O'Keeffe , Mark L. Stillwell , David Goltzsche , David Eyers , R\u00fcdiger Kapitza , Peter Pietzuch , and Christof Fetzer . 2016 . SCONE: Secure Linux Containers with Intel SGX . In Proceedings of the 12th USENIX Conference on Operating Systems Design and Implementation ( Savannah, GA, USA) (OSDI'16). USENIX Association, USA, 689--703. https:\/\/www.usenix.org\/system\/files\/conference\/osdi16\/osdi16-arnautov.pdf Sergei Arnautov, Bohdan Trach, Franz Gregor, Thomas Knauth, Andre Martin, Christian Priebe, Joshua Lind, Divya Muthukumaran, Dan O'Keeffe, Mark L. Stillwell, David Goltzsche, David Eyers, R\u00fcdiger Kapitza, Peter Pietzuch, and Christof Fetzer. 2016. SCONE: Secure Linux Containers with Intel SGX. In Proceedings of the 12th USENIX Conference on Operating Systems Design and Implementation (Savannah, GA, USA) (OSDI'16). USENIX Association, USA, 689--703. https:\/\/www.usenix.org\/system\/files\/conference\/osdi16\/osdi16-arnautov.pdf"},{"key":"e_1_2_1_11_1","volume-title":"Avocado: A Secure In-Memory Distributed Storage System. In 2021 USENIX Annual Technical Conference (USENIX ATC 21)","author":"Bailleu Maurice","year":"2021","unstructured":"Maurice Bailleu , Dimitra Giantsidi , Vasilis Gavrielatos , Do Le Quoc , Vijay Nagarajan , and Pramod Bhatotia . 2021 . Avocado: A Secure In-Memory Distributed Storage System. In 2021 USENIX Annual Technical Conference (USENIX ATC 21) . USENIX Association, USA, 65--79. https:\/\/www.usenix.org\/system\/files\/atc21-bailleu.pdf Maurice Bailleu, Dimitra Giantsidi, Vasilis Gavrielatos, Do Le Quoc, Vijay Nagarajan, and Pramod Bhatotia. 2021. Avocado: A Secure In-Memory Distributed Storage System. In 2021 USENIX Annual Technical Conference (USENIX ATC 21). USENIX Association, USA, 65--79. https:\/\/www.usenix.org\/system\/files\/atc21-bailleu.pdf"},{"key":"e_1_2_1_12_1","volume-title":"Proceedings of the 17th USENIX Conference on File and Storage Technologies","author":"Bailleu Maurice","year":"2019","unstructured":"Maurice Bailleu , J\u00f6rg Thalheim , Pramod Bhatotia , Christof Fetzer , Michio Honda , and Kapil Vaswani . 2019 . Speicher: Securing LSM-Based Key-Value Stores Using Shielded Execution . In Proceedings of the 17th USENIX Conference on File and Storage Technologies ( Boston, MA, USA) (FAST'19). USENIX Association, USA, 173--190. https:\/\/www.usenix.org\/system\/files\/fast19-bailleu.pdf Maurice Bailleu, J\u00f6rg Thalheim, Pramod Bhatotia, Christof Fetzer, Michio Honda, and Kapil Vaswani. 2019. Speicher: Securing LSM-Based Key-Value Stores Using Shielded Execution. In Proceedings of the 17th USENIX Conference on File and Storage Technologies (Boston, MA, USA) (FAST'19). USENIX Association, USA, 173--190. https:\/\/www.usenix.org\/system\/files\/fast19-bailleu.pdf"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/2799647"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/3064176.3064213"},{"key":"e_1_2_1_15_1","unstructured":"bellard. 2021. QuickJS. https:\/\/bellard.org\/quickjs\/ [Last accessed: 2023-Oct-06].  bellard. 2021. QuickJS. https:\/\/bellard.org\/quickjs\/ [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1007\/BFb0053428"},{"key":"e_1_2_1_17_1","unstructured":"Sam Blackshear Evan Cheng David L. Dill Victor Gao Ben Maurer Todd Nowacki Alistair Pott Shaz Qadeer Rain Dario Russi Stephane Sezer Tim Zakian and Runtian Zhou. 2019. Move: A Language With Programmable Resources. Technical Report. Calibra. https:\/\/developers.diem.com\/papers\/diem-move-a-language-with-programmable-resources\/2019-06-18.pdf [Last accessed: 2023-Oct-06].  Sam Blackshear Evan Cheng David L. Dill Victor Gao Ben Maurer Todd Nowacki Alistair Pott Shaz Qadeer Rain Dario Russi Stephane Sezer Tim Zakian and Runtian Zhou. 2019. Move: A Language With Programmable Resources. Technical Report. Calibra. https:\/\/developers.diem.com\/papers\/diem-move-a-language-with-programmable-resources\/2019-06-18.pdf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.17487\/RFC5280"},{"key":"e_1_2_1_19_1","volume-title":"31st USENIX Security Symposium (USENIX Security 22)","author":"Borrello Pietro","year":"2022","unstructured":"Pietro Borrello , Andreas Kogler , Martin Schwarzl , Moritz Lipp , Daniel Gruss , and Michael Schwarz . 2022 . \u00c6PIC Leak: Architecturally Leaking Uninitialized Data from the Microarchitecture . In 31st USENIX Security Symposium (USENIX Security 22) . USENIX Association, Boston, MA, 3917--3934. https:\/\/www.usenix.org\/system\/files\/sec22-borrello.pdf Pietro Borrello, Andreas Kogler, Martin Schwarzl, Moritz Lipp, Daniel Gruss, and Michael Schwarz. 2022. \u00c6PIC Leak: Architecturally Leaking Uninitialized Data from the Microarchitecture. In 31st USENIX Security Symposium (USENIX Security 22). USENIX Association, Boston, MA, 3917--3934. https:\/\/www.usenix.org\/system\/files\/sec22-borrello.pdf"},{"key":"e_1_2_1_20_1","unstructured":"Marcus Brandenburger Christian Cachin R\u00fcdiger Kapitza and Alessandro Sorniotti. 2018. Blockchain and Trusted Computing: Problems Pitfalls and a Solution for Hyperledger Fabric. arXiv:1805.08541 [cs.DC] https:\/\/arxiv.org\/abs\/1805.08541  Marcus Brandenburger Christian Cachin R\u00fcdiger Kapitza and Alessandro Sorniotti. 2018. Blockchain and Trusted Computing: Problems Pitfalls and a Solution for Hyperledger Fabric. arXiv:1805.08541 [cs.DC] https:\/\/arxiv.org\/abs\/1805.08541"},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2017.45"},{"key":"e_1_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/2988336.2988350"},{"key":"e_1_2_1_23_1","unstructured":"Mark Cavage and Manu Sporny. 2019. Signing HTTP Messages. Internet-Draft draft-cavage-http-signatures-12. Internet Engineering Task Force. https:\/\/datatracker.ietf.org\/doc\/draft-cavage-http-signatures\/12\/ Work in Progress.  Mark Cavage and Manu Sporny. 2019. Signing HTTP Messages. Internet-Draft draft-cavage-http-signatures-12. Internet Engineering Task Force. https:\/\/datatracker.ietf.org\/doc\/draft-cavage-http-signatures\/12\/ Work in Progress."},{"key":"e_1_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/3183713.3196898"},{"key":"e_1_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2019.00023"},{"key":"e_1_2_1_27_1","unstructured":"ConsenSys. 2022. Quorum. https:\/\/github.com\/ConsenSys\/quorum [Last accessed: 2023-Oct-06].  ConsenSys. 2022. Quorum. https:\/\/github.com\/ConsenSys\/quorum [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_28_1","unstructured":"Kata Containers. 2021. [RFC] [WIP] Confidential Computing Enablement. https:\/\/github.com\/kata-containers\/kata-containers\/issues\/1332 [Last accessed: 2023-Oct-06].  Kata Containers. 2021. [RFC] [WIP] Confidential Computing Enablement. https:\/\/github.com\/kata-containers\/kata-containers\/issues\/1332 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_29_1","unstructured":"Kata Containers. 2022. Kata Containers. https:\/\/github.com\/kata-containers [Last accessed: 2023-Oct-06].  Kata Containers. 2022. Kata Containers. https:\/\/github.com\/kata-containers [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_30_1","unstructured":"Corda. 2022. Corda. https:\/\/github.com\/corda\/corda [Last accessed: 2023-Oct-06].  Corda. 2022. Corda. https:\/\/github.com\/corda\/corda [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_31_1","unstructured":"Victor Costan and Srinivas Devadas. 2016. Intel SGX Explained. Cryptology ePrint Archive Paper 2016\/086. https:\/\/eprint.iacr.org\/2016\/086  Victor Costan and Srinivas Devadas. 2016. Intel SGX Explained. Cryptology ePrint Archive Paper 2016\/086. https:\/\/eprint.iacr.org\/2016\/086"},{"key":"e_1_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/3532862"},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/3492321.3519568"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/3623460"},{"key":"e_1_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1109\/TIT.1976.1055638"},{"key":"e_1_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/3533737.3535098"},{"key":"e_1_2_1_37_1","unstructured":"Open Enclave. 2022. Open Enclave SDK. https:\/\/github.com\/openenclave\/openenclave [Last accessed: 2023-Oct-06].  Open Enclave. 2022. Open Enclave SDK. https:\/\/github.com\/openenclave\/openenclave [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_38_1","unstructured":"etcd v3.5. 2021. Operations Guide: Runtime reconfiguration - Cluster reconfiguration operations. https:\/\/etcd.io\/docs\/v3.1\/op-guide\/runtime-configuration\/#cluster-reconfiguration-operations [Last accessed: 2023-Oct-06].  etcd v3.5. 2021. Operations Guide: Runtime reconfiguration - Cluster reconfiguration operations. https:\/\/etcd.io\/docs\/v3.1\/op-guide\/runtime-configuration\/#cluster-reconfiguration-operations [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSN53405.2022.00015"},{"key":"e_1_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1137\/0218012"},{"key":"e_1_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1145\/3552326.3567482"},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.5555\/3241189.3241208"},{"key":"e_1_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1145\/3552326.3587455"},{"key":"e_1_2_1_44_1","volume-title":"Proceedings of the 12th USENIX Conference on Operating Systems Design and Implementation","author":"Hunt Tyler","year":"2016","unstructured":"Tyler Hunt , Zhiting Zhu , Yuanzhong Xu , Simon Peter , and Emmett Witchel . 2016 . Ryoan: A Distributed Sandbox for Untrusted Computation on Secret Data . In Proceedings of the 12th USENIX Conference on Operating Systems Design and Implementation ( Savannah, GA, USA) (OSDI'16). USENIX Association, USA, 533--549. https:\/\/www.usenix.org\/system\/files\/conference\/osdi16\/osdi16-hunt.pdf Tyler Hunt, Zhiting Zhu, Yuanzhong Xu, Simon Peter, and Emmett Witchel. 2016. Ryoan: A Distributed Sandbox for Untrusted Computation on Secret Data. In Proceedings of the 12th USENIX Conference on Operating Systems Design and Implementation (Savannah, GA, USA) (OSDI'16). USENIX Association, USA, 533--549. https:\/\/www.usenix.org\/system\/files\/conference\/osdi16\/osdi16-hunt.pdf"},{"key":"e_1_2_1_45_1","unstructured":"Hyperledger. 2021. Fabric Private Chaincode RPC 1.0. https:\/\/github.com\/hyperledger\/fabric-rfcs\/blob\/main\/text\/0000-fabric-private-chaincode-1.0.md [Last accessed: 2023-Oct-06].  Hyperledger. 2021. Fabric Private Chaincode RPC 1.0. https:\/\/github.com\/hyperledger\/fabric-rfcs\/blob\/main\/text\/0000-fabric-private-chaincode-1.0.md [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_46_1","unstructured":"Hyperledger. 2022. Hyperledger Fabric. https:\/\/github.com\/hyperledger\/fabric [Last accessed: 2023-Oct-06].  Hyperledger. 2022. Hyperledger Fabric. https:\/\/github.com\/hyperledger\/fabric [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_47_1","unstructured":"Hyperledger. 2022. Hyperledger Fabric Private Chaincode. https:\/\/github.com\/hyperledger\/fabric-private-chaincode [Last accessed: 2023-Oct-06].  Hyperledger. 2022. Hyperledger Fabric Private Chaincode. https:\/\/github.com\/hyperledger\/fabric-private-chaincode [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_48_1","unstructured":"Intel. 2016. Introduction to Intel SGX Sealing. https:\/\/www.intel.com\/content\/www\/us\/en\/developer\/articles\/technical\/introduction-to-intel-sgx-sealing.html [Last accessed: 2023-Oct-06].  Intel. 2016. Introduction to Intel SGX Sealing. https:\/\/www.intel.com\/content\/www\/us\/en\/developer\/articles\/technical\/introduction-to-intel-sgx-sealing.html [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_49_1","unstructured":"Intel. 2018. Performance Considerations for Intel Software Guard Extensions (Intel SGX) Applications. https:\/\/community.intel.com\/legacyfs\/online\/drupal_files\/managed\/09\/37\/Intel-SGX-Performance-Considerations.pdf [Last accessed: 2023-Oct-06].  Intel. 2018. Performance Considerations for Intel Software Guard Extensions (Intel SGX) Applications. https:\/\/community.intel.com\/legacyfs\/online\/drupal_files\/managed\/09\/37\/Intel-SGX-Performance-Considerations.pdf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_50_1","unstructured":"Intel. 2020. AMD SEV-SNP: Strengthening VM isolation with integrity protection and more. https:\/\/www.amd.com\/system\/files\/TechDocs\/SEV-SNP-strengthening-vm-isolation-with-integrity-protection-and-more.pdf [Last accessed: 2023-Oct-06].  Intel. 2020. AMD SEV-SNP: Strengthening VM isolation with integrity protection and more. https:\/\/www.amd.com\/system\/files\/TechDocs\/SEV-SNP-strengthening-vm-isolation-with-integrity-protection-and-more.pdf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_51_1","unstructured":"Intel. 2021. Intel Trust Domain Extensions - White Paper. https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/690419 [Last accessed: 2023-Oct-06].  Intel. 2021. Intel Trust Domain Extensions - White Paper. https:\/\/cdrdv2.intel.com\/v1\/dl\/getContent\/690419 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_52_1","volume-title":"Product Brief: 3rd Gen Intel Xeon Scalable Processors. https:\/\/www.intel.com\/content\/www\/us\/en\/products\/docs\/processors\/xeon\/3rd-gen-xeon-scalable-processors-brief.html [Last accessed: 2023-Oct-06]","unstructured":"Intel. 2021. Product Brief: 3rd Gen Intel Xeon Scalable Processors. https:\/\/www.intel.com\/content\/www\/us\/en\/products\/docs\/processors\/xeon\/3rd-gen-xeon-scalable-processors-brief.html [Last accessed: 2023-Oct-06] . Intel. 2021. Product Brief: 3rd Gen Intel Xeon Scalable Processors. https:\/\/www.intel.com\/content\/www\/us\/en\/products\/docs\/processors\/xeon\/3rd-gen-xeon-scalable-processors-brief.html [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_53_1","unstructured":"Intel. 2021. Unable to find Alternatives to Monotonic Counter Application Programming Interfaces (APIs) in Intel Software Guard Extensions (Intel SGX) for Linux* to Prevent Sealing Rollback Attacks. https:\/\/www.intel.com\/content\/www\/us\/en\/support\/articles\/000057968\/software\/intel-security-products.html Article ID: 000057968 [Last accessed: 2023-Oct-06].  Intel. 2021. Unable to find Alternatives to Monotonic Counter Application Programming Interfaces (APIs) in Intel Software Guard Extensions (Intel SGX) for Linux * to Prevent Sealing Rollback Attacks. https:\/\/www.intel.com\/content\/www\/us\/en\/support\/articles\/000057968\/software\/intel-security-products.html Article ID: 000057968 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_54_1","unstructured":"Intel. 2022. Intel Software Guard Extensions (Intel SGX) SDK for Linux OS - Developer Reference. https:\/\/download.01.org\/intel-sgx\/latest\/linux-latest\/docs\/Intel_SGX_Developer_Reference_Linux_2.17_Open_Source.pdf Revision 2.17 [Last accessed: 2023-Oct-06].  Intel. 2022. Intel Software Guard Extensions (Intel SGX) SDK for Linux OS - Developer Reference. https:\/\/download.01.org\/intel-sgx\/latest\/linux-latest\/docs\/Intel_SGX_Developer_Reference_Linux_2.17_Open_Source.pdf Revision 2.17 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_55_1","unstructured":"Intel. 2022. Which Platforms Support Intel Software Guard Extensions (Intel SGX) SGX2? https:\/\/www.intel.com\/content\/www\/us\/en\/support\/articles\/000058764\/software\/intel-security-products.html Article ID: 000058764 [Last accessed: 2023-Oct-06].  Intel. 2022. Which Platforms Support Intel Software Guard Extensions (Intel SGX) SGX2? https:\/\/www.intel.com\/content\/www\/us\/en\/support\/articles\/000058764\/software\/intel-security-products.html Article ID: 000058764 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_56_1","volume-title":"Parma: Confidential Containers via Attested Execution Policies. arXiv:2302.03976 [cs.CR] https:\/\/arxiv.org\/abs\/2302.03976","author":"Johnson Matthew A.","year":"2023","unstructured":"Matthew A. Johnson , Stavros Volos , Ken Gordon , Sean T. Allen , Christoph M. Wintersteiger , Sylvan Clebsch , John Starks , and Manuel Costa . 2023 . Parma: Confidential Containers via Attested Execution Policies. arXiv:2302.03976 [cs.CR] https:\/\/arxiv.org\/abs\/2302.03976 Matthew A. Johnson, Stavros Volos, Ken Gordon, Sean T. Allen, Christoph M. Wintersteiger, Sylvan Clebsch, John Starks, and Manuel Costa. 2023. Parma: Confidential Containers via Attested Execution Policies. arXiv:2302.03976 [cs.CR] https:\/\/arxiv.org\/abs\/2302.03976"},{"key":"e_1_2_1_57_1","doi-asserted-by":"publisher","DOI":"10.17487\/RFC7519"},{"key":"e_1_2_1_58_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2011.5958223"},{"key":"e_1_2_1_59_1","volume-title":"Proceedings of the 16th USENIX Conference on Networked Systems Design and Implementation","author":"Kalia Anuj","unstructured":"Anuj Kalia , Michael Kaminsky , and David G. Andersen . 2019. Datacenter RPCs Can Be General and Fast . In Proceedings of the 16th USENIX Conference on Networked Systems Design and Implementation ( Boston, MA, USA) (NSDI'19). USENIX Association, USA, 1--16. https:\/\/www.usenix.org\/system\/files\/nsdi19-kalia.pdf Anuj Kalia, Michael Kaminsky, and David G. Andersen. 2019. Datacenter RPCs Can Be General and Fast. In Proceedings of the 16th USENIX Conference on Networked Systems Design and Implementation (Boston, MA, USA) (NSDI'19). USENIX Association, USA, 1--16. https:\/\/www.usenix.org\/system\/files\/nsdi19-kalia.pdf"},{"key":"e_1_2_1_60_1","unstructured":"David Kaplan. 2017. Protecting VM Register State with SEV-ES. https:\/\/www.amd.com\/content\/dam\/amd\/en\/documents\/epyc-business-docs\/white-papers\/Protecting-VM-Register-State-with-SEV-ES.pdf [Last accessed: 2023-Oct-06].  David Kaplan. 2017. Protecting VM Register State with SEV-ES. https:\/\/www.amd.com\/content\/dam\/amd\/en\/documents\/epyc-business-docs\/white-papers\/Protecting-VM-Register-State-with-SEV-ES.pdf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_61_1","unstructured":"David Kaplan Jeremy Powell and Tom Woller. 2021. AMD Memory Encryption. https:\/\/www.amd.com\/content\/dam\/amd\/en\/documents\/epyc-business-docs\/white-papers\/memory-encryption-white-paper.pdf [Last accessed: 2023-Oct-06].  David Kaplan Jeremy Powell and Tom Woller. 2021. AMD Memory Encryption. https:\/\/www.amd.com\/content\/dam\/amd\/en\/documents\/epyc-business-docs\/white-papers\/memory-encryption-white-paper.pdf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_62_1","doi-asserted-by":"publisher","DOI":"10.1145\/3373376.3378496"},{"key":"e_1_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1145\/3302424.3303951"},{"key":"e_1_2_1_64_1","doi-asserted-by":"publisher","DOI":"10.1145\/3190508.3190518"},{"key":"e_1_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1145\/3471621.3471840"},{"key":"e_1_2_1_66_1","unstructured":"Hyperledger Labs. 2022. Hyperledger Private Data Objects. https:\/\/github.com\/hyperledger-labs\/private-data-objects  Hyperledger Labs. 2022. Hyperledger Private Data Objects. https:\/\/github.com\/hyperledger-labs\/private-data-objects"},{"key":"e_1_2_1_67_1","doi-asserted-by":"publisher","DOI":"10.1145\/279227.279229"},{"key":"e_1_2_1_68_1","volume-title":"Specifying Systems: The TLA+ Language and Tools for Hardware and Software Engineers","author":"Lamport Leslie","year":"2002","unstructured":"Leslie Lamport . 2002 . Specifying Systems: The TLA+ Language and Tools for Hardware and Software Engineers . Addison-Wesley Professional , Pearson Education, USA. https:\/\/lamport.azurewebsites.net\/tla\/book.html [Last accessed: 2023-Oct-06]. Leslie Lamport. 2002. Specifying Systems: The TLA+ Language and Tools for Hardware and Software Engineers. Addison-Wesley Professional, Pearson Education, USA. https:\/\/lamport.azurewebsites.net\/tla\/book.html [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_69_1","doi-asserted-by":"publisher","DOI":"10.1145\/3342195.3387532"},{"key":"e_1_2_1_70_1","volume-title":"15th USENIX Symposium on Operating Systems Design and Implementation (OSDI 21)","author":"Li Mingyu","year":"2021","unstructured":"Mingyu Li , Jinhao Zhu , Tianxu Zhang , Cheng Tan , Yubin Xia , Sebastian Angel , and Haibo Chen . 2021 . Bringing Decentralized Search to Decentralized Services . In 15th USENIX Symposium on Operating Systems Design and Implementation (OSDI 21) . USENIX Association, USA, 331--347. https:\/\/www.usenix.org\/system\/files\/osdi21-li.pdf Mingyu Li, Jinhao Zhu, Tianxu Zhang, Cheng Tan, Yubin Xia, Sebastian Angel, and Haibo Chen. 2021. Bringing Decentralized Search to Decentralized Services. In 15th USENIX Symposium on Operating Systems Design and Implementation (OSDI 21). USENIX Association, USA, 331--347. https:\/\/www.usenix.org\/system\/files\/osdi21-li.pdf"},{"key":"e_1_2_1_71_1","volume-title":"Design and Verification of the Arm Confidential Compute Architecture. In 16th USENIX Symposium on Operating Systems Design and Implementation (OSDI 22)","author":"Li Xupeng","year":"2022","unstructured":"Xupeng Li , Xuheng Li , Christoffer Dall , Ronghui Gu , Jason Nieh , Yousuf Sait , and Gareth Stockwell . 2022 . Design and Verification of the Arm Confidential Compute Architecture. In 16th USENIX Symposium on Operating Systems Design and Implementation (OSDI 22) . USENIX Association, Carlsbad, CA, 465--484. https:\/\/www.usenix.org\/system\/files\/osdi22-li.pdf Xupeng Li, Xuheng Li, Christoffer Dall, Ronghui Gu, Jason Nieh, Yousuf Sait, and Gareth Stockwell. 2022. Design and Verification of the Arm Confidential Compute Architecture. In 16th USENIX Symposium on Operating Systems Design and Implementation (OSDI 22). USENIX Association, Carlsbad, CA, 465--484. https:\/\/www.usenix.org\/system\/files\/osdi22-li.pdf"},{"key":"e_1_2_1_72_1","volume-title":"Proceedings of the 2017 USENIX Conference on Usenix Annual Technical Conference (Santa Clara, CA, USA) (USENIX ATC '17). USENIX Association, USA, 285--298","author":"Lind Joshua","year":"2017","unstructured":"Joshua Lind , Christian Priebe , Divya Muthukumaran , Dan O'Keeffe , Pierre-Louis Aublin , Florian Kelbert , Tobias Reiher , David Goltzsche , David Eyers , R\u00fcdiger Kapitza , Christof Fetzer , and Peter Pietzuch . 2017 . Glamdring: Automatic Application Partitioning for Intel SGX . In Proceedings of the 2017 USENIX Conference on Usenix Annual Technical Conference (Santa Clara, CA, USA) (USENIX ATC '17). USENIX Association, USA, 285--298 . https:\/\/www.usenix.org\/system\/files\/conference\/atc17\/atc17-lind.pdf Joshua Lind, Christian Priebe, Divya Muthukumaran, Dan O'Keeffe, Pierre-Louis Aublin, Florian Kelbert, Tobias Reiher, David Goltzsche, David Eyers, R\u00fcdiger Kapitza, Christof Fetzer, and Peter Pietzuch. 2017. Glamdring: Automatic Application Partitioning for Intel SGX. In Proceedings of the 2017 USENIX Conference on Usenix Annual Technical Conference (Santa Clara, CA, USA) (USENIX ATC '17). USENIX Association, USA, 285--298. https:\/\/www.usenix.org\/system\/files\/conference\/atc17\/atc17-lind.pdf"},{"key":"e_1_2_1_73_1","doi-asserted-by":"publisher","DOI":"10.1109\/FTCS.1997.614100"},{"key":"e_1_2_1_74_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSN48987.2021.00053"},{"key":"e_1_2_1_75_1","doi-asserted-by":"publisher","DOI":"10.1145\/3124441"},{"key":"e_1_2_1_76_1","volume-title":"Proceedings of the 26th USENIX Conference on Security Symposium","author":"Matetic Sinisa","year":"2017","unstructured":"Sinisa Matetic , Mansoor Ahmed , Kari Kostiainen , Aritra Dhar , David Sommer , Arthur Gervais , Ari Juels , and Srdjan Capkun . 2017 . ROTE: Rollback Protection for Trusted Execution . In Proceedings of the 26th USENIX Conference on Security Symposium ( Vancouver, BC, Canada) (SEC'17). USENIX Association, USA, 1289--1306. https:\/\/www.usenix.org\/system\/files\/conference\/usenixsecurity17\/sec17-matetic.pdf Sinisa Matetic, Mansoor Ahmed, Kari Kostiainen, Aritra Dhar, David Sommer, Arthur Gervais, Ari Juels, and Srdjan Capkun. 2017. ROTE: Rollback Protection for Trusted Execution. In Proceedings of the 26th USENIX Conference on Security Symposium (Vancouver, BC, Canada) (SEC'17). USENIX Association, USA, 1289--1306. https:\/\/www.usenix.org\/system\/files\/conference\/usenixsecurity17\/sec17-matetic.pdf"},{"key":"e_1_2_1_77_1","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-48184-2_32"},{"key":"e_1_2_1_78_1","doi-asserted-by":"publisher","DOI":"10.1145\/3464298.3476129"},{"key":"e_1_2_1_79_1","unstructured":"Microsoft. 2022. LSKV. https:\/\/github.com\/microsoft\/LSKV [Last accessed: 2023-Oct-06].  Microsoft. 2022. LSKV. https:\/\/github.com\/microsoft\/LSKV [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_80_1","unstructured":"Microsoft. 2022. Merklecpp. https:\/\/github.com\/microsoft\/merklecpp [Last accessed: 2023-Oct-06].  Microsoft. 2022. Merklecpp. https:\/\/github.com\/microsoft\/merklecpp [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_81_1","unstructured":"Microsoft. 2022. Microsoft Azure confidential ledger. https:\/\/learn.microsoft.com\/en-us\/azure\/confidential-ledger\/overview [Last accessed: 2023-Oct-06].  Microsoft. 2022. Microsoft Azure confidential ledger. https:\/\/learn.microsoft.com\/en-us\/azure\/confidential-ledger\/overview [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_82_1","unstructured":"Microsoft. 2022. scitt-ccf-ledger. https:\/\/github.com\/microsoft\/scitt-ccf-ledger [Last accessed: 2023-Oct-06].  Microsoft. 2022. scitt-ccf-ledger. https:\/\/github.com\/microsoft\/scitt-ccf-ledger [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_83_1","unstructured":"Microsoft. 2022. W3C DID for Confidential Consortium Framework. https:\/\/github.com\/microsoft\/did-ccf [Last accessed: 2023-Oct-06].  Microsoft. 2022. W3C DID for Confidential Consortium Framework. https:\/\/github.com\/microsoft\/did-ccf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_84_1","unstructured":"Microsoft. 2023. Confidential Consortium Framework Documentation. https:\/\/microsoft.github.io\/CCF\/main\/ [Last accessed: 2023-Oct-06].  Microsoft. 2023. Confidential Consortium Framework Documentation. https:\/\/microsoft.github.io\/CCF\/main\/ [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_85_1","unstructured":"Microsoft. 2023. DCsv3 and DCdsv3-series. https:\/\/learn.microsoft.com\/en-us\/azure\/virtual-machines\/dcv3-series [Last accessed: 2023-Oct-06].  Microsoft. 2023. DCsv3 and DCdsv3-series. https:\/\/learn.microsoft.com\/en-us\/azure\/virtual-machines\/dcv3-series [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_86_1","unstructured":"Microsoft. 2023. Default constitution for CCF. https:\/\/github.com\/microsoft\/CCF\/tree\/main\/samples\/constitutions\/default [Last accessed: 2023-Oct-06].  Microsoft. 2023. Default constitution for CCF. https:\/\/github.com\/microsoft\/CCF\/tree\/main\/samples\/constitutions\/default [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_87_1","unstructured":"Microsoft. 2023. TLA+ Specifications for the Confidential Consortium Framework. https:\/\/github.com\/microsoft\/CCF\/tree\/main\/tla [Last accessed: 2023-Oct-06].  Microsoft. 2023. TLA+ Specifications for the Confidential Consortium Framework. https:\/\/github.com\/microsoft\/CCF\/tree\/main\/tla [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_88_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00057"},{"key":"e_1_2_1_89_1","doi-asserted-by":"publisher","DOI":"10.1145\/3548606.3560620"},{"key":"e_1_2_1_90_1","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.FIPS.180-4"},{"key":"e_1_2_1_91_1","volume-title":"Proceedings of the 2018 USENIX Conference on Usenix Annual Technical Conference (Boston, MA, USA) (USENIX ATC '18). USENIX Association, USA, 227--239","author":"Oleksenko Oleksii","year":"2018","unstructured":"Oleksii Oleksenko , Bohdan Trach , Robert Krahn , Andre Martin , Christof Fetzer , and Mark Silberstein . 2018 . Varys: Protecting SGX Enclaves from Practical Side-Channel Attacks . In Proceedings of the 2018 USENIX Conference on Usenix Annual Technical Conference (Boston, MA, USA) (USENIX ATC '18). USENIX Association, USA, 227--239 . https:\/\/www.usenix.org\/system\/files\/conference\/atc18\/atc18-oleksenko.pdf Oleksii Oleksenko, Bohdan Trach, Robert Krahn, Andre Martin, Christof Fetzer, and Mark Silberstein. 2018. Varys: Protecting SGX Enclaves from Practical Side-Channel Attacks. In Proceedings of the 2018 USENIX Conference on Usenix Annual Technical Conference (Boston, MA, USA) (USENIX ATC '18). USENIX Association, USA, 227--239. https:\/\/www.usenix.org\/system\/files\/conference\/atc18\/atc18-oleksenko.pdf"},{"key":"e_1_2_1_92_1","unstructured":"Diego Ongaro. 2014. Consensus: Bridging Theory and Practice. Ph.D. Dissertation. Stanford. https:\/\/web.stanford.edu\/~ouster\/cgi-bin\/papers\/OngaroPhD.pdf [Last accessed: 2023-Oct-06].  Diego Ongaro. 2014. Consensus: Bridging Theory and Practice. Ph.D. Dissertation. Stanford. https:\/\/web.stanford.edu\/~ouster\/cgi-bin\/papers\/OngaroPhD.pdf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_93_1","volume-title":"Proceedings of the 2014 USENIX Conference on USENIX Annual Technical Conference (Philadelphia, PA) (USENIX ATC'14). USENIX Association, USA, 305 -- 320","author":"Ongaro Diego","year":"2014","unstructured":"Diego Ongaro and John Ousterhout . 2014 . In Search of an Understandable Consensus Algorithm . In Proceedings of the 2014 USENIX Conference on USENIX Annual Technical Conference (Philadelphia, PA) (USENIX ATC'14). USENIX Association, USA, 305 -- 320 . https:\/\/www.usenix.org\/system\/files\/conference\/atc14\/atc14-paper-ongaro.pdf Diego Ongaro and John Ousterhout. 2014. In Search of an Understandable Consensus Algorithm. In Proceedings of the 2014 USENIX Conference on USENIX Annual Technical Conference (Philadelphia, PA) (USENIX ATC'14). USENIX Association, USA, 305 -- 320. https:\/\/www.usenix.org\/system\/files\/conference\/atc14\/atc14-paper-ongaro.pdf"},{"key":"e_1_2_1_94_1","unstructured":"OpenSSL. 2023. OpenSSL homepage. https:\/\/www.openssl.org\/ [Last accessed: 2023-Oct-06].  OpenSSL. 2023. OpenSSL homepage. https:\/\/www.openssl.org\/ [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_95_1","doi-asserted-by":"publisher","DOI":"10.1145\/3064176.3064219"},{"key":"e_1_2_1_96_1","unstructured":"European Parliament. 2016. General Data Protection Regulation (GDPR) 2016\/679. https:\/\/eur-lex.europa.eu\/eli\/reg\/2016\/679\/oj [Last accessed: 2023-Oct-06].  European Parliament. 2016. General Data Protection Regulation (GDPR) 2016\/679. https:\/\/eur-lex.europa.eu\/eli\/reg\/2016\/679\/oj [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_97_1","doi-asserted-by":"publisher","DOI":"10.1109\/QRS-C55045.2021.00168"},{"key":"e_1_2_1_98_1","unstructured":"Peter Pogorski. 2023. Announcing public preview of confidential containers on Azure Container Instances. https:\/\/techcommunity.microsoft.com\/t5\/apps-on-azure-blog\/announcing-public-preview-of-confidential-containers-on-azure\/ba-p\/3755623 [Last accessed: 2023-Oct-06].  Peter Pogorski. 2023. Announcing public preview of confidential containers on Azure Container Instances. https:\/\/techcommunity.microsoft.com\/t5\/apps-on-azure-blog\/announcing-public-preview-of-confidential-containers-on-azure\/ba-p\/3755623 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_99_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00025"},{"key":"e_1_2_1_100_1","unstructured":"Anil Rao. 2022. Rising to the Challenge - Data Security with Intel Confidential Computing. https:\/\/community.intel.com\/t5\/Blogs\/Products-and-Solutions\/Security\/Rising-to-the-Challenge-Data-Security-with-Intel-Confidential\/post\/1353141 [Last accessed: 2023-Oct-06].  Anil Rao. 2022. Rising to the Challenge - Data Security with Intel Confidential Computing. https:\/\/community.intel.com\/t5\/Blogs\/Products-and-Solutions\/Security\/Rising-to-the-Challenge-Data-Security-with-Intel-Confidential\/post\/1353141 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_102_1","doi-asserted-by":"publisher","DOI":"10.1145\/3453930"},{"key":"e_1_2_1_103_1","doi-asserted-by":"publisher","DOI":"10.17487\/RFC5288"},{"key":"e_1_2_1_104_1","doi-asserted-by":"publisher","DOI":"10.17487\/RFC8152"},{"key":"e_1_2_1_105_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.10"},{"key":"e_1_2_1_106_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-60876-1_1"},{"key":"e_1_2_1_107_1","doi-asserted-by":"publisher","DOI":"10.1145\/359168.359176"},{"key":"e_1_2_1_108_1","volume-title":"IA-CCF: Individual Accountability for Permissioned Ledgers. In 19th USENIX Symposium on Networked Systems Design and Implementation (NSDI 22)","author":"Shamis Alex","year":"2022","unstructured":"Alex Shamis , Peter Pietzuch , Burcu Canakci , Miguel Castro , Cedric Fournet , Edward Ashton , Amaury Chamayou , Sylvan Clebsch , Antoine Delignat-Lavaud , Matthew Kerner , Julien Maffre , Olga Vrousgou , Christoph M. Wintersteiger , Manuel Costa , and Mark Russinovich . 2022 . IA-CCF: Individual Accountability for Permissioned Ledgers. In 19th USENIX Symposium on Networked Systems Design and Implementation (NSDI 22) . USENIX Association, Renton, WA, 467--491. https:\/\/www.usenix.org\/system\/files\/nsdi22-paper-shamis.pdf Alex Shamis, Peter Pietzuch, Burcu Canakci, Miguel Castro, Cedric Fournet, Edward Ashton, Amaury Chamayou, Sylvan Clebsch, Antoine Delignat-Lavaud, Matthew Kerner, Julien Maffre, Olga Vrousgou, Christoph M. Wintersteiger, Manuel Costa, and Mark Russinovich. 2022. IA-CCF: Individual Accountability for Permissioned Ledgers. In 19th USENIX Symposium on Networked Systems Design and Implementation (NSDI 22). USENIX Association, Renton, WA, 467--491. https:\/\/www.usenix.org\/system\/files\/nsdi22-paper-shamis.pdf"},{"key":"e_1_2_1_109_1","doi-asserted-by":"publisher","DOI":"10.1145\/3373376.3378469"},{"key":"e_1_2_1_110_1","unstructured":"Signal. 2022. Private Contact Discovery Service (Public Archive). https:\/\/github.com\/signalapp\/ContactDiscoveryService\/ [Last accessed: 2023-Oct-06].  Signal. 2022. Private Contact Discovery Service (Public Archive). https:\/\/github.com\/signalapp\/ContactDiscoveryService\/ [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_111_1","doi-asserted-by":"publisher","DOI":"10.1145\/3447543"},{"key":"e_1_2_1_112_1","unstructured":"Rohit Sinha and Mihai Christodorescu. 2018. VeritasDB: High Throughput Key-Value Store with Integrity. Cryptology ePrint Archive Paper 2018\/251. https:\/\/eprint.iacr.org\/2018\/251  Rohit Sinha and Mihai Christodorescu. 2018. VeritasDB: High Throughput Key-Value Store with Integrity. Cryptology ePrint Archive Paper 2018\/251. https:\/\/eprint.iacr.org\/2018\/251"},{"key":"e_1_2_1_113_1","unstructured":"Shubhra Sinha. 2022. Microsoft introduces preview of Azure Managed Confidential Consortium Framework. https:\/\/techcommunity.microsoft.com\/t5\/azure-confidential-computing\/microsoft-introduces-preview-of-azure-managed-confidential\/ba-p\/3648986 [Last accessed: 2023-Oct-06].  Shubhra Sinha. 2022. Microsoft introduces preview of Azure Managed Confidential Consortium Framework. https:\/\/techcommunity.microsoft.com\/t5\/azure-confidential-computing\/microsoft-introduces-preview-of-azure-managed-confidential\/ba-p\/3648986 [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_114_1","doi-asserted-by":"publisher","DOI":"10.1145\/3307650.3322228"},{"key":"e_1_2_1_115_1","volume-title":"Vinju","author":"Steindorfer Michael J.","year":"2016","unstructured":"Michael J. Steindorfer and Jurgen J . Vinju . 2016 . Fast and Lean Immutable Multi-Maps on the JVM based on Heterogeneous Hash-Array Mapped Tries. CoRR abs\/1608.01036 (2016). arXiv:1608.01036 http:\/\/arxiv.org\/abs\/1608.01036 Michael J. Steindorfer and Jurgen J. Vinju. 2016. Fast and Lean Immutable Multi-Maps on the JVM based on Heterogeneous Hash-Array Mapped Tries. CoRR abs\/1608.01036 (2016). arXiv:1608.01036 http:\/\/arxiv.org\/abs\/1608.01036"},{"key":"e_1_2_1_116_1","doi-asserted-by":"publisher","DOI":"10.14778\/3447689.3447705"},{"key":"e_1_2_1_117_1","volume-title":"Constellation: Always Encrypted Kubernetes. https:\/\/github.com\/edgelesssys\/constellation [Last accessed: 2023-Oct-06].","author":"Systems Edgeless","year":"2022","unstructured":"Edgeless Systems . 2022 . Constellation: Always Encrypted Kubernetes. https:\/\/github.com\/edgelesssys\/constellation [Last accessed: 2023-Oct-06]. Edgeless Systems. 2022. Constellation: Always Encrypted Kubernetes. https:\/\/github.com\/edgelesssys\/constellation [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_118_1","unstructured":"Edgeless Systems. 2022. EGo. https:\/\/github.com\/edgelesssys\/ego [Last accessed: 2023-Oct-06].  Edgeless Systems. 2022. EGo. https:\/\/github.com\/edgelesssys\/ego [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_119_1","doi-asserted-by":"publisher","DOI":"10.1145\/2592798.2592812"},{"key":"e_1_2_1_120_1","volume-title":"Graphene-SGX: A Practical Library OS for Unmodified Applications on SGX. In 2017 USENIX Annual Technical Conference","author":"Tsai Chia-Che","year":"2017","unstructured":"Chia-Che Tsai , Donald E. Porter , and Mona Vij . 2017 . Graphene-SGX: A Practical Library OS for Unmodified Applications on SGX. In 2017 USENIX Annual Technical Conference ( Santa Clara, CA, USA) (USENIX ATC '17). USENIX Association, USA, 645--658. https:\/\/www.usenix.org\/system\/files\/conference\/atc17\/atc17-tsai.pdf Chia-Che Tsai, Donald E. Porter, and Mona Vij. 2017. Graphene-SGX: A Practical Library OS for Unmodified Applications on SGX. In 2017 USENIX Annual Technical Conference (Santa Clara, CA, USA) (USENIX ATC '17). USENIX Association, USA, 645--658. https:\/\/www.usenix.org\/system\/files\/conference\/atc17\/atc17-tsai.pdf"},{"key":"e_1_2_1_121_1","volume-title":"Proceedings of the 27th USENIX Conference on Security Symposium","author":"Bulck Jo Van","year":"2018","unstructured":"Jo Van Bulck , Marina Minkin , Ofir Weisse , Daniel Genkin , Baris Kasikci , Frank Piessens , Mark Silberstein , Thomas F. Wenisch , Yuval Yarom , and Raoul Strackx . 2018 . Foreshadow: Extracting the Keys to the Intel SGX Kingdom with Transient out-of-Order Execution . In Proceedings of the 27th USENIX Conference on Security Symposium ( Baltimore, MD, USA) (SEC'18). USENIX Association, USA, 991--1008. https:\/\/www.usenix.org\/system\/files\/conference\/usenixsecurity18\/sec18-van_bulck.pdf Jo Van Bulck, Marina Minkin, Ofir Weisse, Daniel Genkin, Baris Kasikci, Frank Piessens, Mark Silberstein, Thomas F. Wenisch, Yuval Yarom, and Raoul Strackx. 2018. Foreshadow: Extracting the Keys to the Intel SGX Kingdom with Transient out-of-Order Execution. In Proceedings of the 27th USENIX Conference on Security Symposium (Baltimore, MD, USA) (SEC'18). USENIX Association, USA, 991--1008. https:\/\/www.usenix.org\/system\/files\/conference\/usenixsecurity18\/sec18-van_bulck.pdf"},{"key":"e_1_2_1_122_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00089"},{"key":"e_1_2_1_123_1","unstructured":"Stephan van Schaik Andrew Kwong Daniel Genkin and Yuval Yarom. 2020. SGAxe: How SGX Fails in Practice. https:\/\/sgaxe.com\/files\/SGAxe.pdf [Last accessed: 2023-Oct-06].  Stephan van Schaik Andrew Kwong Daniel Genkin and Yuval Yarom. 2020. SGAxe: How SGX Fails in Practice. https:\/\/sgaxe.com\/files\/SGAxe.pdf [Last accessed: 2023-Oct-06]."},{"key":"e_1_2_1_124_1","unstructured":"Stephan van Schaik Alex Seto Thomas Yurek Adam Batori Bader AlBassam Christina Garman Daniel Genkin Andrew Miller Eyal Ronen and Yuval Yarom. 2022. SoK: SGX.Fail: How Stuff Get eXposed. https:\/\/sgx.fail.  Stephan van Schaik Alex Seto Thomas Yurek Adam Batori Bader AlBassam Christina Garman Daniel Genkin Andrew Miller Eyal Ronen and Yuval Yarom. 2022. SoK: SGX.Fail: How Stuff Get eXposed. https:\/\/sgx.fail."},{"key":"e_1_2_1_125_1","doi-asserted-by":"publisher","DOI":"10.1145\/3548606.3560639"},{"key":"e_1_2_1_126_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133979"},{"key":"e_1_2_1_127_1","doi-asserted-by":"publisher","DOI":"10.1145\/3140659.3080208"},{"key":"e_1_2_1_128_1","volume-title":"Principles of information security","author":"Whitman Michael E","unstructured":"Michael E Whitman and Herbert J Mattord . 2011. Principles of information security , 4 th edition. Course Technology Inc , USA. Michael E Whitman and Herbert J Mattord. 2011. Principles of information security, 4th edition. Course Technology Inc, USA.","edition":"4"},{"key":"e_1_2_1_129_1","doi-asserted-by":"publisher","DOI":"10.14778\/3551793.3551861"},{"key":"e_1_2_1_130_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-59013-0_30"},{"key":"e_1_2_1_131_1","doi-asserted-by":"publisher","DOI":"10.4230\/LIPIcs.DISC.2021.62"}],"container-title":["Proceedings of the VLDB Endowment"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.14778\/3626292.3626304","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,1,8]],"date-time":"2024-01-08T23:08:21Z","timestamp":1704755301000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.14778\/3626292.3626304"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,10]]},"references-count":129,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2023,10]]}},"alternative-id":["10.14778\/3626292.3626304"],"URL":"https:\/\/doi.org\/10.14778\/3626292.3626304","relation":{},"ISSN":["2150-8097"],"issn-type":[{"value":"2150-8097","type":"print"}],"subject":[],"published":{"date-parts":[[2023,10]]},"assertion":[{"value":"2023-10-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}