{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,2]],"date-time":"2026-05-02T22:36:04Z","timestamp":1777761364035,"version":"3.51.4"},"reference-count":195,"publisher":"Emerald","issue":"1-2","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017,7,13]]},"abstract":"This manuscript is the first in a two part survey and analysis of the state of the art in secure processor systems, with a specific focus on remote software attestation and software isolation. This manuscript first examines the relevant concepts in computer architecture and cryptography, and then surveys attack vectors and existing processor systems claiming security for remote computation and\/or software isolation. This work examines in detail the modern isolation container (enclave) primitive as a means to minimize trusted software given practical trusted hardware and reasonable performance overhead. Specifically, this work examines in detail the programming model and software design considerations of Intel\u2019s Software Guard Extensions (SGX), as it is an available and documented enclave-capable system.<\/jats:p>\n Part II of this work is a deep dive into the implementation and security evaluation of two modern enclave-capable secure processor systems: SGX and MIT\u2019s Sanctum. The complex but insufficient threat model employed by SGX motivates Sanctum, which achieves stronger security guarantees under software attacks with an equivalent programming model.<\/jats:p>\n This work advocates a principled, transparent, and well-scrutinized approach to secure system design, and argues that practical guarantees of privacy and integrity for remote computation are achievable at a reasonable design cost and performance overhead.<\/jats:p>","DOI":"10.1561\/1000000051","type":"journal-article","created":{"date-parts":[[2017,7,13]],"date-time":"2017-07-13T06:29:07Z","timestamp":1499927347000},"page":"1-248","source":"Crossref","is-referenced-by-count":28,"title":["Secure Processors Part I: Background, Taxonomy for Secure Enclaves and Intel SGX Architecture"],"prefix":"10.1108","volume":"11","author":[{"given":"Victor","family":"Costan","sequence":"first","affiliation":[{"name":"Massachusetts Institute of Technology Computer Science and Artificial Intelligence Laboratory,"}]},{"given":"Ilia","family":"Lebedev","sequence":"additional","affiliation":[{"name":"Massachusetts Institute of Technology Computer Science and Artificial Intelligence Laboratory,"}]},{"given":"Srinivas","family":"Devadas","sequence":"additional","affiliation":[{"name":"Massachusetts Institute of Technology Computer Science and Artificial Intelligence Laboratory,"}]}],"member":"140","published-online":{"date-parts":[[2017,7,13]]},"reference":[{"key":"2026032901170162500_ref001","volume-title":"FIPS 140-2 Consolidated Validation Certificate No. 0003. 2011. IBM 4765 Cryptographic Coprocessor Security Module - Security Policy","author":"\u00a0","year":"2012"},{"key":"2026032901170162500_ref002","unstructured":"7-Zip LZMA benchmark: Intel Haswell\n . http:\/\/www.7-cpu.com\/cpu\/Haswell.html, 2014. [Online; accessed 10-Februrary-2015]."},{"key":"2026032901170162500_ref003","unstructured":"Linux kernel\n : CVE security vulnerabilities, versions and detailed reports. http:\/\/www.cvedetails.com\/product\/47\/Linux-Linux-Kernel.html?vendor_id=33, 2014a. [Online; accessed 27-April-2015]."},{"key":"2026032901170162500_ref004","unstructured":"XEN\n : CVE security vulnerabilities, versions and detailed reports. http:\/\/www.cvedetails.com\/product\/23463\/XEN-XEN.html?vendor_id=6276, 2014b. [Online; accessed 27-April-2015]."},{"key":"2026032901170162500_ref005","unstructured":"IPC2 hardware specification\n . http:\/\/fit-pc.com\/download\/intense-pc2\/documents\/ipc2-hw-specification.pdf, Sep2014. [Online; accessed 2-Dec-2015]."},{"key":"2026032901170162500_ref006","unstructured":"Gradually sunsetting SHA-1\n . http:\/\/googleonlinesecurity.blogspot.com\/2014\/09\/gradually-sunsetting-sha-1.html, 2014. [Online; accessed 4-May-2015]."},{"key":"2026032901170162500_ref007","unstructured":"NIST\u2019S policy on hash functions\n . http:\/\/csrc.nist.gov\/groups\/ST\/hash\/policy.html, 2014. [Online; accessed 4-May-2015]."},{"key":"2026032901170162500_ref008","unstructured":"BIOS freedom status\n . https:\/\/puri.sm\/posts\/bios-freedom-status\/, Nov2014. [Online; accessed 2-Dec-2015]."},{"key":"2026032901170162500_ref009","unstructured":"Xen project software overview\n . http:\/\/wiki.xen.org\/wiki\/Xen_Project_Software_Overview, 2015. [Online; accessed 27-April-2015]."},{"key":"2026032901170162500_ref010","unstructured":"SHA-1 deprecation countdown\n . https:\/\/blogs.windows.com\/msedgedev\/2016\/11\/18\/countdown-to-sha-1-deprecation\/#MPDwCxdpw3IqPPBR.97, 2016. [Online; accessed 18-June-2017]."},{"key":"2026032901170162500_ref011","unstructured":"Seth\n Abraham\n \n . Time to revisit REP;MOVS - comment. https:\/\/software.intel.com\/en-us\/forums\/topic\/275765, Aug2006. [Online; accessed 23-January-2015]."},{"issue":"4","key":"2026032901170162500_ref012","first-page":"18","article-title":"TrustZone: Integrated hardware and software security","volume":"3","author":"Alves","year":"2004","journal-title":"Information Quarterly"},{"key":"2026032901170162500_ref013","article-title":"Innovative technology for CPU based attestation and sealing","author":"Anati"},{"key":"2026032901170162500_ref014","volume-title":"Security engineering: A guide to building dependable distributed systems","author":"Anderson","year":"2001"},{"key":"2026032901170162500_ref015","unstructured":"Sebastian\n Anthony\n \n . Who actually develops Linux? the answer might surprise you. http:\/\/www.extremetech.com\/computing\/175919-who-actually-develops-linux, 2014. [Online; accessed 27-April-2015]."},{"key":"2026032901170162500_ref016","volume-title":"AMBA\u00ae AXI Protocol"},{"key":"2026032901170162500_ref017","volume-title":"ARM Security Technology Building a Secure System using TrustZone\u00ae Technology"},{"key":"2026032901170162500_ref018","volume-title":"Cache timing attacks","author":"Banescu","year":"2011"},{"key":"2026032901170162500_ref019","first-page":"800-57","article-title":"Recommendation for key management - part 1: General (revision 3)","volume-title":"Federal Information Processing Standards (FIPS) Special Publications (SP)","author":"Barker","year":"2012"},{"key":"2026032901170162500_ref020","first-page":"180-4","article-title":"Secure hash standard (SHS)","volume-title":"Federal Information Processing Standards (FIPS) Publications (PUBS)","author":"Barker","year":"2015"},{"key":"2026032901170162500_ref021","volume-title":"Integrated Circuit Failure Analysis: a Guide to Preparation Techniques","author":"Beck","year":"1998"},{"key":"2026032901170162500_ref022","first-page":"1","article-title":"Chosen ciphertext attacks against protocols based on the RSA encryption standard PKCS# 1","author":"Bleichenbacher"},{"key":"2026032901170162500_ref023","volume-title":"Microprocessor with novel instruction for signaling event occurrence and for providing event handling information in response thereto","author":"Boggs","year":"1997"},{"key":"2026032901170162500_ref024","doi-asserted-by":"crossref","first-page":"201","DOI":"10.1007\/11894063_16","volume-title":"Cryptographic Hardware and Embedded Systems-CHES 2006","author":"Bonneau","year":"2006"},{"key":"2026032901170162500_ref025","article-title":"Enhanced privacy ID from bilinear pairing","volume-title":"IACR Cryptology ePrint Archive","author":"Brickell","year":"2009"},{"key":"2026032901170162500_ref026","doi-asserted-by":"crossref","first-page":"355","DOI":"10.1007\/978-3-642-23822-2_20","volume-title":"Computer Security-ESORICS 2011","author":"Brumley","year":"2011"},{"issue":"5","key":"2026032901170162500_ref027","doi-asserted-by":"crossref","first-page":"701","DOI":"10.1016\/j.comnet.2005.01.010","article-title":"Remote timing attacks are practical","volume":"48","author":"Brumley","year":"2005","journal-title":"Computer Networks"},{"key":"2026032901170162500_ref028","first-page":"25","article-title":"BIOS chronomancy: Fixing the core root of trust for measurement","author":"Butterworth"},{"key":"2026032901170162500_ref029","first-page":"1","article-title":"Scalable architectural support for trusted software","author":"Champagne"},{"key":"2026032901170162500_ref030","volume-title":"Security analysis of x86 processor microcode","author":"Chen","year":"2014"},{"key":"2026032901170162500_ref031","first-page":"5","article-title":"Linux kernel vulnerabilities: State-of-the-art defenses and open problems","author":"Chen"},{"key":"2026032901170162500_ref032","first-page":"800-108","article-title":"Recommendation for key derivation using pseudorandom functions","volume-title":"Federal Information Processing Standards (FIPS) Special Publications (SP)","author":"Chen","year":"2009"},{"key":"2026032901170162500_ref033","volume-title":"Developer manual","author":"Coreboot","year":"2014"},{"key":"2026032901170162500_ref034","volume-title":"Microinstruction pointer stack including speculative pointers for out-of-order execution","author":"Cornaby","year":"2007"},{"key":"2026032901170162500_ref035","volume-title":"Intel@ Xeon@ Processor E5 v3 Family Uncore Performance Monitoring Reference Manual","author":"Intel Corporation","year":"2014"},{"key":"2026032901170162500_ref036","volume-title":"Sanctum: Minimal hardware extensions for strong software isolation","author":"Costan","year":"2015"},{"key":"2026032901170162500_ref037","doi-asserted-by":"crossref","DOI":"10.1561\/9781680833034","article-title":"Secure processors part II: Intel SGX security analysis and MIT sanctum architecture","volume-title":"FnTEDA","author":"Costan","year":"2017"},{"key":"2026032901170162500_ref038","volume-title":"AES proposal: Rijndael, AES algorithm submission","author":"Daemen","year":"1999"},{"key":"2026032901170162500_ref039","volume-title":"Technique for providing secure firmware","author":"Datta","year":"2013"},{"key":"2026032901170162500_ref040","volume-title":"System and method for trusted early boot flow","author":"Datta","year":"2010"},{"key":"2026032901170162500_ref041","article-title":"Booting an Intel architecture system, part i: Early initialization","volume-title":"Dr. Dobb\u2019s","author":"Dice","year":"2011"},{"issue":"6","key":"2026032901170162500_ref042","doi-asserted-by":"crossref","first-page":"644","DOI":"10.1109\/TIT.1976.1055638","article-title":"New directions in cryptography","volume":"22","author":"Diffie","year":"1976","journal-title":"Information Theory, IEEE Transactions on"},{"key":"2026032901170162500_ref043","article-title":"Using CPU system management mode to circumvent operating system security functions","volume-title":"CanSecWest\/core06","author":"Duflot","year":"2006"},{"key":"2026032901170162500_ref044","first-page":"800-38A","article-title":"Recommendation for block cipher modes of operation: Methods and techniques","volume-title":"Federal Information Processing Standards (FIPS) Special Publications (SP)","author":"Dworkin","year":"2001"},{"key":"2026032901170162500_ref045","first-page":"800-38B","article-title":"Recommendation for block cipher modes of operation: The CMAC mode for authentication","volume-title":"Federal Information Processing Standards (FIPS) Special Publications (SP)","author":"Dworkin","year":"2005"},{"key":"2026032901170162500_ref046","first-page":"800-38D","article-title":"Recommendation for block cipher modes of operation: Galois\/counter mode (GCM) and GMAC","volume-title":"Federal Information Processing Standards (FIPS) Special Publications (SP)","author":"Dworkin","year":"2007"},{"key":"2026032901170162500_ref047","article-title":"RFC 3174: US Secure Hash Algorithm 1 (SHA1)","volume-title":"Internet RFCs","author":"Eastlake","year":"2001"},{"key":"2026032901170162500_ref048","article-title":"SMM rootkit: a new breed of OS independent malware","volume-title":"Security and Communication Networks","author":"Embleton","year":"2010"},{"key":"2026032901170162500_ref049","volume-title":"Cryptography Engineering: Design Principles and Practical Applications","author":"Ferguson","year":"2011"},{"key":"2026032901170162500_ref050","first-page":"3","article-title":"A secure processor architecture for encrypted computation on untrusted programs","author":"Fletcher"},{"key":"2026032901170162500_ref051","volume-title":"Instruction tables - lists of instruction latencies, throughputs and micro-operation breakdowns for Intel, AMD and VIA CPUs","author":"Fog","year":"2014"},{"key":"2026032901170162500_ref052","article-title":"BIOS and secure boot attacks uncovered","author":"Furtak"},{"key":"2026032901170162500_ref053","doi-asserted-by":"crossref","DOI":"10.1007\/978-1-4302-6149-0","volume-title":"Intel@ Trusted Execution Technology for Server Platforms","author":"Futral","year":"2013"},{"key":"2026032901170162500_ref054","first-page":"148","article-title":"Silicon physical random functions","author":"Gassend"},{"key":"2026032901170162500_ref055","first-page":"295","article-title":"Caches and hash trees for efficient memory integrity verification","author":"Gassend"},{"key":"2026032901170162500_ref056","volume-title":"RSA key extraction via low-bandwidth acoustic cryptanalysis","author":"Genkin","year":"2013"},{"key":"2026032901170162500_ref057","volume-title":"Get your hands off my laptop: Physical side-channel key-extraction attacks on pcs","author":"Genkin","year":"2014"},{"key":"2026032901170162500_ref058","volume-title":"Stealing keys from PCs using a radio: Cheap electromagnetic attacks on windowed exponentiation","author":"Genkin","year":"2015"},{"key":"2026032901170162500_ref059","volume-title":"A fully homomorphic encryption scheme","author":"Gentry","year":"2009"},{"key":"2026032901170162500_ref060","volume-title":"Dynamically partitioning pipeline resources","author":"George","year":"2009"},{"key":"2026032901170162500_ref061","volume-title":"Method and apparatus for performing page table walks in a microprocessor capable of processing speculative instructions","author":"Glew","year":"1997"},{"key":"2026032901170162500_ref062","volume-title":"Method and apparatus for implementing a non-blocking translation lookaside buffer","author":"Glew","year":"1996"},{"key":"2026032901170162500_ref063","first-page":"182","article-title":"Towards a theory of software protection and simulation by oblivious RAMs","author":"Goldreich"},{"key":"2026032901170162500_ref064","volume-title":"MESIF: A two-hop cache coherency protocol for point-to-point interconnects","author":"Goodman","year":"2009"},{"key":"2026032901170162500_ref065","volume-title":"Advanced hardware hacking techniques","author":"Grand","year":"2004"},{"key":"2026032901170162500_ref066","volume-title":"Dynamics ofa Trusted Platform: A building block approach","author":"Grawrock","year":"2009"},{"key":"2026032901170162500_ref067","article-title":"Rowhammer.js: A remote software-induced fault attack in JavaScript","volume":"abs\/1507.06955","author":"Gruss","year":"2015","journal-title":"CoRR"},{"key":"2026032901170162500_ref068","volume-title":"A memory encryption engine suitable for general purpose processors","author":"Gueron","year":"2016"},{"key":"2026032901170162500_ref069","volume-title":"Security analysis of x86 processor microcode","author":"Hawkes","year":"2012"},{"key":"2026032901170162500_ref070","volume-title":"Computer Architecture - a Quantitative Approach (5 ed.)","author":"Hennessy","year":"2012"},{"key":"2026032901170162500_ref071","first-page":"239","volume-title":"Applied cryptography and Network security","author":"Herbst","year":"2006"},{"key":"2026032901170162500_ref072","volume-title":"Apparatus and method for page walk extension for enhanced security checks","author":"Hildesheim","year":"2014"},{"key":"2026032901170162500_ref073","doi-asserted-by":"crossref","article-title":"Using innovative instructions to create trustworthy software solutions","author":"Hoekstra","DOI":"10.1145\/2487726.2488370"},{"key":"2026032901170162500_ref074","volume-title":"Intel manageability firmware recovery agent","author":"Hofemeier","year":"2013"},{"key":"2026032901170162500_ref075","volume-title":"PS3 glitch hack","author":"Hotz","year":"2010"},{"key":"2026032901170162500_ref076","volume-title":"Hacking the Xbox: an Introduction to Reverse Engineering","author":"Huang","year":"2003"},{"key":"2026032901170162500_ref077","volume-title":"Gathering and scattering multiple data elements","author":"Hughes","year":"2013"},{"key":"2026032901170162500_ref078","volume-title":"IEEE Standard for Ethernet","year":"2012"},{"key":"2026032901170162500_ref079","volume-title":"Seriously, get off my cloud! cross-VM RSA key recovery in a public cloud. Cryptology ePrint Archive","author":"Sinan Inci","year":"2015"},{"key":"2026032901170162500_ref080","volume-title":"Intel\u00ae Processor Serial Number","year":"1999"},{"key":"2026032901170162500_ref081","volume-title":"An Introduction to the Intel\u00ae QuickPath Interconnect","year":"2010"},{"key":"2026032901170162500_ref082","volume-title":"Minimal Intel\u00ae\u00ae Architecture Boot Loader-Bare Bones Functionality Required for Booting an Intel\u00ae Architecture Platform","year":"2010"},{"key":"2026032901170162500_ref083","volume-title":"Intel\u00ae Core 2 Duo and Intel\u00ae\u00ae Core 2 Solo Processor for Intel\u00ae\u00ae Centrino\u00ae\u00ae Duo Processor Technology Intel\u00ae\u00ae Celeron\u00ae\u00ae Processor 500 Series - Specification Update","year":"2010"},{"key":"2026032901170162500_ref084","volume-title":"Intel\u00ae architecture Platform Basics","year":"2010"},{"key":"2026032901170162500_ref085","volume-title":"Intel\u00ae\u00ae Trusted Execution Technology (Intel\u00ae\u00ae TXT) LAB Handout","year":"2010"},{"key":"2026032901170162500_ref086","volume-title":"Intel\u00ae\u00ae Xeon\u00ae\u00ae Processor 7500 Series Uncore Programming Guide","year":"2010"},{"key":"2026032901170162500_ref087","volume-title":"Intel\u00ae\u00ae 7 Series Family - Intel\u00ae\u00ae Management Engine Firmware 8.1 - 1.5MB Firmware Bring Up Guide","year":"2012"},{"key":"2026032901170162500_ref088","volume-title":"Intel\u00ae Xeon\u00ae\u00ae Processor E5-2600 Product Family Uncore Performance Monitoring Guide","year":"2012"},{"key":"2026032901170162500_ref089","volume-title":"Software Guard Extensions Programming Reference","year":"2013"},{"key":"2026032901170162500_ref090","volume-title":"Intel\u00ae Xeon\u00ae Processor 7500 Series Datasheet - Volume Two","year":"2014"},{"key":"2026032901170162500_ref091","volume-title":"Intel\u00ae Xeon\u00ae Processor E7 v2 2800\/4800\/8800 Product Family Datasheet -Volume Two","year":"2014"},{"key":"2026032901170162500_ref092","volume-title":"Intel\u00ae 64 and IA-32 Architectures Optimization Reference Manual","year":"2014"},{"key":"2026032901170162500_ref093","volume-title":"Software Guard Extensions Programming Reference","year":"2014"},{"key":"2026032901170162500_ref094","volume-title":"Intel@ 100 Series Chipset Family Platform Controller Hub (PCH) Datasheet - Volume One","year":"2015"},{"key":"2026032901170162500_ref095","volume-title":"Mobile 4th Generation Intel@ Core\u00ae\u00ae Processor Family I\/O Datasheet","year":"2015"},{"key":"2026032901170162500_ref096","volume-title":"Intel\u00ae Xeon\u00ae Processor E5-1600, E5-2400, and E5-2600 v3 Product Family Datasheet - Volume Two","year":"2015"},{"key":"2026032901170162500_ref097","volume-title":"Intel\u00ae Xeon\u00ae Processor 5500 Series - Specification Update","year":"2015"},{"key":"2026032901170162500_ref098","volume-title":"Intel\u00ae Xeon\u00ae Processor E5 Product Family - Specification Update","year":"2015"},{"key":"2026032901170162500_ref099","volume-title":"Intel\u00ae Software Guard Extensions (Intel\u00ae SGX)","year":"2015"},{"key":"2026032901170162500_ref100","volume-title":"Intel\u00ae 64 and IA-32 Architectures Software Developer\u2019s Manual","year":"2015"},{"key":"2026032901170162500_ref101","volume-title":"Intel\u00ae C610 Series Chipset and Intel\u00ae\u00ae X99 Chipset Platform Controller Hub (PCH) Datasheet","year":"2015"},{"issue":"6","key":"2026032901170162500_ref102","doi-asserted-by":"crossref","first-page":"33","DOI":"10.1109\/2.683005","article-title":"Virtual memory: Issues of implementation","volume":"31","author":"Jacob","year":"1998","journal-title":"Computer"},{"key":"2026032901170162500_ref103","unstructured":"Simon\n Johnson\n , VinnieScarlata, CarlosRozas, ErnieBrickell, and FrankMc-keen. Intel\u00ae software guard extensions: EPID provisioning and attestation services. https:\/\/software.intel.com\/en-us\/blogs\/2016\/03\/09\/intel-sgx-epid-provisioning-and-attestation-services, Mar2016. [Online; accessed 21-Mar-2016]."},{"key":"2026032901170162500_ref104","volume-title":"Technique for supporting multiple secure enclaves","author":"Johnson","year":"2010"},{"key":"2026032901170162500_ref105","article-title":"RFC 3447: Public-Key Cryptography Standards (PKCS) #1: RSA Cryptography Specifications Version 2.1","volume-title":"Internet RFCs","author":"Jonsson","year":"2003"},{"key":"2026032901170162500_ref106","article-title":"RFC 2313: PKCS #1: RSA Encryption Version 1.5","volume-title":"Internet RFCs","author":"Kaliski","year":"1998"},{"key":"2026032901170162500_ref107","article-title":"RFC 2437: PKCS #1: RSA Encryption Version 2.0","volume-title":"Internet RFCs","author":"Kaliski","year":"1998"},{"key":"2026032901170162500_ref108","volume-title":"Extreme privilege escalation on windows 8\/UEFI systems","author":"Kallenberg","year":"2014"},{"key":"2026032901170162500_ref109","first-page":"1","volume-title":"Cryptographic Hardware and Embedded Systems-CHES 2009","author":"K\u00e4sper","year":"2009"},{"key":"2026032901170162500_ref110","doi-asserted-by":"crossref","DOI":"10.1201\/b17668","volume-title":"Introduction to modern cryptography","author":"Katz","year":"2014"},{"issue":"4","key":"2026032901170162500_ref111","doi-asserted-by":"crossref","first-page":"338","DOI":"10.1145\/138873.138876","article-title":"Page placement algorithms for large real-indexed caches","volume":"10","author":"Kessler","year":"1992","journal-title":"ACM Transactions on Computer Systems (TOCS)"},{"key":"2026032901170162500_ref112","first-page":"139","article-title":"Practical and effective sandboxing for non-root users","author":"Kim"},{"key":"2026032901170162500_ref113","first-page":"361","article-title":"Flipping bits in memory without accessing them: An experimental study of DRAM disturbance errors","author":"Kim"},{"key":"2026032901170162500_ref114","volume-title":"Apparatus and method for providing eventing ip and source data address in a statistical sampling infrastructure","author":"Knauth","year":"2014"},{"issue":"177","key":"2026032901170162500_ref115","doi-asserted-by":"crossref","first-page":"203","DOI":"10.1090\/S0025-5718-1987-0866109-5","article-title":"Elliptic curve cryptosystems","volume":"48","author":"Koblitz","year":"1987","journal-title":"Mathematics of Computation"},{"key":"2026032901170162500_ref116","doi-asserted-by":"crossref","first-page":"388","DOI":"10.1007\/3-540-48405-1_25","volume-title":"Advances in Cryptology (CRYPTO)","author":"Kocher","year":"1999"},{"key":"2026032901170162500_ref117","first-page":"104","volume-title":"Advances in Cryptology - CRYPTO&AZ96","author":"Kocher","year":"1996"},{"key":"2026032901170162500_ref118","volume-title":"HMAC: Keyed-hashing for message authentication","author":"Krawczyk","year":"1997"},{"key":"2026032901170162500_ref119","doi-asserted-by":"crossref","first-page":"88","DOI":"10.1007\/11423409_7","volume-title":"Privacy Enhancing Technologies","author":"Kuhn","year":"2005"},{"key":"2026032901170162500_ref120","volume-title":"Generic debug eXternal connection (gdxc) for high integration integrated circuits","author":"Kurts","year":"2011"},{"key":"2026032901170162500_ref121","unstructured":"David\n Levinthal\n \n . Performance analysis guide for Intel\u00ae Core i7 processor and Intel\u00ae Xeon 5500 processors. https:\/\/software.intel.com\/sites\/products\/collateral\/hpc\/vtune\/performance_analysis_guide.pdf, 2010. [Online; accessed 26-January-2015]."},{"issue":"11","key":"2026032901170162500_ref122","doi-asserted-by":"crossref","first-page":"168","DOI":"10.1145\/356989.357005","article-title":"Architectural support for copy and tamper resistant software","volume":"35","author":"Lie","year":"2000","journal-title":"ACM SIGPLAN Notices"},{"key":"2026032901170162500_ref123","first-page":"367","article-title":"Gaining insights into multicore cache partitioning: Bridging the gap between simulation and real systems","author":"Lin"},{"key":"2026032901170162500_ref124","doi-asserted-by":"crossref","first-page":"50","DOI":"10.1145\/942572.807045","article-title":"Programming with abstract data types","volume":"9","author":"Liskov","year":"1974","journal-title":"ACM Sigplan Notices"},{"key":"2026032901170162500_ref125","first-page":"143","article-title":"Lastlevel cache side-channel attacks are practical","author":"Liu"},{"key":"2026032901170162500_ref126","first-page":"311324","article-title":"Phantom: Practical oblivious computation in a secure processor","author":"Maas"},{"key":"2026032901170162500_ref127","doi-asserted-by":"crossref","first-page":"230","DOI":"10.1007\/3-540-44647-8_14","volume-title":"Advances in Cryptology - CRYPTO 2001","author":"Manger","year":"2001"},{"key":"2026032901170162500_ref128","doi-asserted-by":"crossref","article-title":"Reverse engineering Intel last-level cache complex addressing using performance counters","author":"Maurice","DOI":"10.1007\/978-3-319-26362-5_3"},{"key":"2026032901170162500_ref129","first-page":"143","article-title":"TrustVisor: Efficient TCB reduction and attestation","author":"McCune"},{"key":"2026032901170162500_ref130","volume-title":"The galois\/counter mode of operation (GCM)","author":"McGrew","year":"2004"},{"key":"2026032901170162500_ref131","volume-title":"Method and apparatus to provide secure application execution","author":"McKeen","year":"2009"},{"key":"2026032901170162500_ref132","first-page":"10","article-title":"Innovative instructions and software model for isolated execution","volume":"13","author":"McKeen","year":"2013","journal-title":"HASP"},{"key":"2026032901170162500_ref133","first-page":"113","article-title":"Can homomor-phic encryption be practical","author":"Naehrig"},{"key":"2026032901170162500_ref134","first-page":"197","article-title":"The advanced encryption standard (AES)","volume-title":"Federal Information Processing Standards (FIPS) Publications (PUBS)","author":"National Institute of Standards and Technology (NIST)","year":"2001"},{"key":"2026032901170162500_ref135","first-page":"186-4","article-title":"The digital signature standard (DSS)","volume-title":"Federal Information Processing Standards (FIPS) Processing Standards Publications (PUBS)","author":"National Institute of Standards and Technology (NIST)","year":"2013"},{"key":"2026032901170162500_ref136","unstructured":"National Security Agency (NSA) Central Security Service (CSS)\n . Cryptography today on suite B phase-out. https:\/\/www.nsa.gov\/ia\/programs\/suiteb_cryptography\/, Aug2015. [Online; accessed 28-December-2015]."},{"key":"2026032901170162500_ref137","volume-title":"Supporting advanced RAS features in a secured computing system","author":"Natu","year":"2012"},{"key":"2026032901170162500_ref138","volume-title":"The spy in the sandbox - practical cache attacks in JavaScript","author":"Oren","year":"2015"},{"key":"2026032901170162500_ref139","first-page":"1","volume-title":"Topics in Cryptology-CT-RSA 2006","author":"Arne Osvik","year":"2006"},{"key":"2026032901170162500_ref140","article-title":"A better x86 memory model: x86-TSO (extended version)","volume-title":"University of Cambridge, Computer Laboratory","author":"Owens","year":"2009"},{"key":"2026032901170162500_ref141","first-page":"9","article-title":"ACCessory: password inference using accelerometers on smartphones","author":"Owusu"},{"key":"2026032901170162500_ref142","volume-title":"Exception handling in a processor that performs speculative out-of-order instruction execution","author":"Papworth","year":"1999"},{"key":"2026032901170162500_ref143","volume-title":"Computer Organization and Design: the hardware\/software interface","author":"Patterson","year":"2013"},{"key":"2026032901170162500_ref144","article-title":"Reverse engineering Intel DRAM addressing and exploitation","volume-title":"ArXiv e-prints","author":"Pessl","year":"2015"},{"key":"2026032901170162500_ref145","first-page":"442","article-title":"Making worst case execution time analysis for hard real-time tasks on state of the art processors feasible","author":"Petters"},{"key":"2026032901170162500_ref146","volume-title":"System and method for using a firmware interface table to dynamically load an ACPI SSDT","author":"Qureshi","year":"2006"},{"key":"2026032901170162500_ref147","volume-title":"Gather cache architecture","author":"Raikin","year":"2014"},{"key":"2026032901170162500_ref148","volume-title":"Apparatus and method for a multiple page size translation lookaside buffer (TLB)","author":"Raikin","year":"2014"},{"key":"2026032901170162500_ref149","unstructured":"Stefan\n Reinauer\n \n . x86 Intel: Add firmware interface table support. http:\/\/review.coreboot.org\/#\/c\/2642\/, 2013. [Online; accessed 2-July-2015]."},{"key":"2026032901170162500_ref150","first-page":"199","article-title":"Hey, you, get off of my cloud: Exploring information leakage in third-party compute clouds","author":"Ristenpart"},{"issue":"2","key":"2026032901170162500_ref151","doi-asserted-by":"crossref","first-page":"120","DOI":"10.1145\/359340.359342","article-title":"A method for obtaining digital signatures and public-key cryptosystems","volume":"21","author":"Rivest","year":"1978","journal-title":"Communications of the ACM"},{"key":"2026032901170162500_ref152","volume-title":"Method and apparatus for performing operations based upon the addresses of microinstructions","author":"Rodgers","year":"1997"},{"key":"2026032901170162500_ref153","volume-title":"Method and apparatus for generating event handler vectors based on both operating mode and event type","author":"Rodgers","year":"1999"},{"issue":"5","key":"2026032901170162500_ref154","doi-asserted-by":"crossref","first-page":"39","DOI":"10.1109\/MC.2005.176","article-title":"Virtual machine monitors: current technology and future trends","volume":"38","author":"Rosenblum","year":"2005","journal-title":"Computer"},{"key":"2026032901170162500_ref155","doi-asserted-by":"crossref","DOI":"10.1007\/978-1-4302-6572-6","volume-title":"Platform Embedded Security Technology Revealed","author":"Ruan","year":"2014"},{"key":"2026032901170162500_ref156","unstructured":"Joanna\n Rutkowska\n \n . Intel x86 considered harmful. https:\/\/blog.invisiblethings.org\/papers\/2015\/x86_harmful.pdf, Oct2015. [Online; accessed 2-Nov-2015]."},{"key":"2026032901170162500_ref157","article-title":"Preventing and detecting Xen hypervisor subversions","volume-title":"Blackhat Briefings USA","author":"Rutkowska","year":"2008"},{"key":"2026032901170162500_ref158","volume-title":"Principles of Computer System Design: An Introduction","author":"Saltzer","year":"2009"},{"key":"2026032901170162500_ref159","unstructured":"Mark\n Seaborn\n and ThomasDullien. Exploiting the DRAM rowhammer bug to gain kernel privileges. http:\/\/googleprojectzero.blogspot.com\/2015\/03\/exploiting-dram-rowhammer-bug-to-gain.html, Mar2015. [Online; accessed 9-March-2015]."},{"key":"2026032901170162500_ref160","volume-title":"Enabling virtualization of a processor resource","author":"Shanbhogue","year":"2014"},{"key":"2026032901170162500_ref161","volume-title":"Itanium: A cautionary tale","author":"Shankland","year":"2005"},{"issue":"3","key":"2026032901170162500_ref162","doi-asserted-by":"crossref","first-page":"473","DOI":"10.1145\/356887.356892","article-title":"Cache memories","volume":"14","author":"Smith","year":"1982","journal-title":"ACM Computing Surveys (CSUR)"},{"issue":"8","key":"2026032901170162500_ref163","doi-asserted-by":"crossref","first-page":"831","DOI":"10.1016\/S1389-1286(98)00019-X","article-title":"Building a high-performance, programmable secure coprocessor","volume":"31","author":"Smith","year":"1999","journal-title":"Computer Networks"},{"key":"2026032901170162500_ref164","article-title":"Validating a high-performance, programmable secure coprocessor","author":"Smith"},{"key":"2026032901170162500_ref165","volume-title":"Free-start collision on full SHA-1. Cryptology ePrint Archive","author":"Stevens","year":"2015"},{"key":"2026032901170162500_ref166","first-page":"160","article-title":"AEGIS: architecture for tamper-evident and tamper-resistant processing","author":"Edward Suh"},{"key":"2026032901170162500_ref167","article-title":"Design and Implementation of the AEGIS Single-Chip Secure Processor Using Physical Random Functions","author":"Edward Suh"},{"issue":"2SI","key":"2026032901170162500_ref168","doi-asserted-by":"crossref","first-page":"355","DOI":"10.1145\/325096.325161","article-title":"The TLB slice - a low-cost high-speed address translation mechanism","volume":"18","author":"Taylor","year":"1990","journal-title":"SIGARCH Computer Architecture News"},{"key":"2026032901170162500_ref169","unstructured":"Trusted Computing Group TCG\n . Tpm main specification. http:\/\/www.trustedcomputinggroup.org\/resources\/tpm_main_specification, 2003."},{"key":"2026032901170162500_ref170","volume-title":"Introducing ring-3 rootkits","author":"Tereshkin","year":"2009"},{"key":"2026032901170162500_ref171","first-page":"403","article-title":"A dynamic and differential CMOS logic with signal independent power consumption to withstand differential power analysis on smart cards","author":"Tiri"},{"key":"2026032901170162500_ref172","volume-title":"Unified Extensible Firmware Interface Specification, Version 2.5","year":"2015"},{"issue":"5","key":"2026032901170162500_ref173","doi-asserted-by":"crossref","first-page":"48","DOI":"10.1109\/MC.2005.163","article-title":"Intel virtualization technology","volume":"38","author":"Uhlig","year":"2005","journal-title":"Computer"},{"issue":"4","key":"2026032901170162500_ref174","doi-asserted-by":"crossref","first-page":"269","DOI":"10.1016\/0167-4048(85)90046-X","article-title":"Electromagnetic radiation from video display units: an eavesdropping risk","volume":"4","author":"Eck","year":"1985","journal-title":"Computers & Security"},{"key":"2026032901170162500_ref175","doi-asserted-by":"crossref","first-page":"141","DOI":"10.1007\/978-3-642-13869-0_10","volume-title":"Trust and Trustworthy Computing","author":"Vasudevan","year":"2010"},{"key":"2026032901170162500_ref176","volume-title":"Advanced Board Bring Up - Power Sequencing Guide for Embedded Intel Architecture","author":"Venkataramani","year":"2011"},{"key":"2026032901170162500_ref177","volume-title":"Security evaluation of Intel\u2019s active management technology","author":"Ververis","year":"2010"},{"issue":"66","key":"2026032901170162500_ref178","article-title":"A real SMM rootkit: Reversing and hooking BIOS SMI handlers","volume":"13","author":"Wecherowski","year":"2009","journal-title":"Phrack Magazine"},{"key":"2026032901170162500_ref179","article-title":"Attacking SMM memory via Intel CPU cache poisoning","volume-title":"Invisible Things Lab","author":"Wojtczuk","year":"2009"},{"key":"2026032901170162500_ref180","article-title":"Attacking Intel trusted execution technology","volume-title":"Black Hat DC","author":"Wojtczuk","year":"2009"},{"key":"2026032901170162500_ref181","volume-title":"Attacking intel TXT via SINIT code execution hijacking","author":"Wojtczuk","year":"2011"},{"key":"2026032901170162500_ref182","article-title":"Attacking Intel\u00ae BIOS","volume-title":"Invisible Things Lab","author":"Wojtczuk","year":"2010"},{"key":"2026032901170162500_ref183","article-title":"Another way to circumvent Intel\u00ae\u00ae trusted execution technology","volume-title":"Invisible Things Lab","author":"Wojtczuk","year":"2009"},{"key":"2026032901170162500_ref184","volume-title":"Genetic algorithm for microcode compression","author":"Wu","year":"2008"},{"key":"2026032901170162500_ref185","volume-title":"Compressing and accessing a microcode ROM","author":"Wu","year":"2012"},{"key":"2026032901170162500_ref186","doi-asserted-by":"crossref","article-title":"Controlled-channel attacks: Deterministic side channels for untrusted operating systems","author":"Xu","DOI":"10.1109\/SP.2015.45"},{"key":"2026032901170162500_ref187","first-page":"162","article-title":"How to generate and exchange secrets","author":"Yao"},{"key":"2026032901170162500_ref188","first-page":"448","article-title":"Flush+Reload: a high resolution, low noise, L3 cache side-channel attack","volume":"2013","author":"Yarom","year":"2013","journal-title":"IACR Cryptology ePrint Archive"},{"key":"2026032901170162500_ref189","volume-title":"Mapping the Intel last-level cache","author":"Yarom","year":"2015"},{"key":"2026032901170162500_ref190","volume-title":"Using secure coprocessors","author":"Yee","year":"1994"},{"key":"2026032901170162500_ref191","first-page":"264","article-title":"A fully integrated multi-CPU, GPU and memory controller 32nm processor","author":"Yuffe"},{"key":"2026032901170162500_ref192","first-page":"367","article-title":"Optimizing Xen VMM based on Intel\u00ae virtualization technology","author":"Zhang"},{"issue":"1","key":"2026032901170162500_ref193","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1145\/1609956.1609959","article-title":"Keyboard acoustic emanations revisited","volume":"13","author":"Zhuang","year":"2009","journal-title":"ACM Transactions on Information and System Security (TISSEC)"},{"key":"2026032901170162500_ref194","volume-title":"Methods and systems for microcode patching","author":"Zimmer","year":"2012"},{"key":"2026032901170162500_ref195","volume-title":"Method and apparatus for sequential hypervisor invocation","author":"Zimmer","year":"2012"}],"container-title":["Foundations and Trends\u00ae in Electronic Design Automation"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.emerald.com\/fteda\/article-pdf\/11\/1-2\/1\/11443446\/1000000051en.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/www.emerald.com\/fteda\/article-pdf\/11\/1-2\/1\/11443446\/1000000051en.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,29]],"date-time":"2026-04-29T14:13:42Z","timestamp":1777472022000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.emerald.com\/fteda\/article\/11\/1-2\/1\/1321570\/Secure-Processors-Part-I-Background-Taxonomy-for"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,7,13]]},"references-count":195,"journal-issue":{"issue":"1-2","published-print":{"date-parts":[[2017,7,13]]}},"URL":"https:\/\/doi.org\/10.1561\/1000000051","relation":{},"ISSN":["1551-3939","1551-3947"],"issn-type":[{"value":"1551-3939","type":"print"},{"value":"1551-3947","type":"electronic"}],"subject":[],"published":{"date-parts":[[2017,7,13]]}}}