{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,11]],"date-time":"2026-07-11T16:45:32Z","timestamp":1783788332067,"version":"3.55.0"},"reference-count":56,"publisher":"Privacy Enhancing Technologies Symposium Advisory Board","issue":"3","license":[{"start":{"date-parts":[[2019,7,1]],"date-time":"2019-07-01T00:00:00Z","timestamp":1561939200000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by-nc-nd\/3.0"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019,7,1]]},"abstract":"<jats:title>Abstract<\/jats:title>\n               <jats:p>Encrypted database systems provide a great method for protecting sensitive data in untrusted infrastructures. These systems are built using either special-purpose cryptographic algorithms that support operations over encrypted data, or by leveraging trusted computing co-processors. Strong cryptographic algorithms (e.g., public-key encryptions, garbled circuits) usually result in high performance overheads, while weaker algorithms (e.g., order-preserving encryption) result in large leakage profiles. On the other hand, some encrypted database systems (e.g., Cipherbase, TrustedDB) leverage non-standard trusted computing devices, and are designed to work around the architectural limitations of the specific devices used.<\/jats:p>\n               <jats:p>In this work we build StealthDB \u2013 an encrypted database system from Intel SGX. Our system can run on any newer generation Intel CPU. StealthDB has a very small trusted computing base, scales to large transactional workloads, requires minor DBMS changes, and provides a relatively strong security guarantees at steady state and during query execution. Our prototype on top of Postgres supports the full TPC-C benchmark with a 30% decrease in the average throughput over an unmodified version of Postgres operating on a 2GB unencrypted dataset.<\/jats:p>","DOI":"10.2478\/popets-2019-0052","type":"journal-article","created":{"date-parts":[[2019,7,20]],"date-time":"2019-07-20T09:31:05Z","timestamp":1563615065000},"page":"370-388","source":"Crossref","is-referenced-by-count":71,"title":["StealthDB: a Scalable Encrypted Database with Full SQL Query Support"],"prefix":"10.56553","volume":"2019","author":[{"given":"Dhinakaran","family":"Vinayagamurthy","sequence":"first","affiliation":[{"name":"IBM Research India , Work done while at University of Waterloo ."}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Alexey","family":"Gribov","sequence":"additional","affiliation":[{"name":"Symbiont.io, Work done while at Stealthmine Inc."}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Sergey","family":"Gorbunov","sequence":"additional","affiliation":[{"name":"University of Waterloo and Algorand"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"35752","published-online":{"date-parts":[[2019,7,12]]},"reference":[{"key":"2022043002453373581_j_popets-2019-0052_ref_001_w2aab3b7c20b1b6b1ab1ab1Aa","unstructured":"[1] Amazon. AWS shell interface specification. https:\/\/github.com\/aws\/aws-fpga\/blob\/master\/hdk\/docs\/AWS_Shell_Interface_Specification.md, 2017. Accessed: 2017-10-01."},{"key":"2022043002453373581_j_popets-2019-0052_ref_002_w2aab3b7c20b1b6b1ab1ab2Aa","unstructured":"[2] A. Arasu, S. Blanas, K. Eguro, R. Kaushik, D. Kossmann, R. Ramamurthy, and R. Venkatesan. Orthogonal security with cipherbase. In CIDR, 2013."},{"key":"2022043002453373581_j_popets-2019-0052_ref_003_w2aab3b7c20b1b6b1ab1ab3Aa","unstructured":"[3] S. Arnautov, B. Trach, F. Gregor, T. Knauth, A. Martin, C. Priebe, J. Lind, D. Muthukumaran, D. O\u2019Keeffe, M. Stillwell, D. Goltzsche, D. M. Eyers, R. Kapitza, P. R. Pietzuch, and C. Fetzer. SCONE: secure linux containers with intel SGX. In OSDI, pages 689\u2013703, 2016."},{"key":"2022043002453373581_j_popets-2019-0052_ref_004_w2aab3b7c20b1b6b1ab1ab4Aa","doi-asserted-by":"crossref","unstructured":"[4] S. Bajaj and R. Sion. Trusteddb: A trusted hardware based database with privacy and data confidentiality. In SIGMOD, pages 205\u2013216, 2011.10.1145\/1989323.1989346","DOI":"10.1145\/1989323.1989346"},{"key":"2022043002453373581_j_popets-2019-0052_ref_005_w2aab3b7c20b1b6b1ab1ab5Aa","doi-asserted-by":"crossref","unstructured":"[5] M. Balduzzi, J. Zaddach, D. Balzarotti, E. Kirda, and S. Loureiro. A security analysis of amazon\u2019s elastic compute cloud service. In SAC, pages 1427\u20131434, 2012.10.1145\/2245276.2232005","DOI":"10.1145\/2245276.2232005"},{"key":"2022043002453373581_j_popets-2019-0052_ref_006_w2aab3b7c20b1b6b1ab1ab6Aa","unstructured":"[6] A. Baumann, M. Peinado, and G. C. Hunt. Shielding applications from an untrusted cloud with haven. In OSDI, pages 267\u2013283, 2014."},{"key":"2022043002453373581_j_popets-2019-0052_ref_007_w2aab3b7c20b1b6b1ab1ab7Aa","unstructured":"[7] F. Brasser, U. M\u00fcller, A. Dmitrienko, K. Kostiainen, S. Capkun, and A. Sadeghi. Software grand exposure: SGX cache attacks are practical. In WOOT, 2017."},{"key":"2022043002453373581_j_popets-2019-0052_ref_008_w2aab3b7c20b1b6b1ab1ab8Aa","doi-asserted-by":"crossref","unstructured":"[8] S. Bugiel, S. N\u00fcrnberger, T. P\u00f6ppelmann, A. Sadeghi, and T. Schneider. Amazonia: when elasticity snaps back. In CCS, pages 389\u2013400, 2011.10.1145\/2046707.2046753","DOI":"10.1145\/2046707.2046753"},{"key":"2022043002453373581_j_popets-2019-0052_ref_009_w2aab3b7c20b1b6b1ab1ab9Aa","unstructured":"[9] J. V. Bulck, M. Minkin, O. Weisse, D. Genkin, B. Kasikci, F. Piessens, M. Silberstein, T. F. Wenisch, Y. Yarom, and R. Strackx. Foreshadow: Extracting the keys to the intel SGX kingdom with transient out-of-order execution. In USENIX Security, pages 991\u20131008, 2018."},{"key":"2022043002453373581_j_popets-2019-0052_ref_010_w2aab3b7c20b1b6b1ab1ac10Aa","doi-asserted-by":"crossref","unstructured":"[10] D. Cash, J. Jaeger, S. Jarecki, C. S. Jutla, H. Krawczyk, M. Rosu, and M. Steiner. Dynamic searchable encryption in very-large databases: Data structures and implementation. In NDSS, 2014.10.14722\/ndss.2014.23264","DOI":"10.14722\/ndss.2014.23264"},{"key":"2022043002453373581_j_popets-2019-0052_ref_011_w2aab3b7c20b1b6b1ab1ac11Aa","doi-asserted-by":"crossref","unstructured":"[11] D. Cash, S. Jarecki, C. S. Jutla, H. Krawczyk, M. Rosu, and M. Steiner. Highly-scalable searchable symmetric encryption with support for boolean queries. In CRYPTO I, pages 353\u2013373, 2013.10.1007\/978-3-642-40041-4_20","DOI":"10.1007\/978-3-642-40041-4_20"},{"key":"2022043002453373581_j_popets-2019-0052_ref_012_w2aab3b7c20b1b6b1ab1ac12Aa","doi-asserted-by":"crossref","unstructured":"[12] D. Cash and S. Tessaro. The locality of searchable symmetric encryption. In EUROCRYPT, pages 351\u2013368, 2014.10.1007\/978-3-642-55220-5_20","DOI":"10.1007\/978-3-642-55220-5_20"},{"key":"2022043002453373581_j_popets-2019-0052_ref_013_w2aab3b7c20b1b6b1ab1ac13Aa","unstructured":"[13] C. che Tsai, D. E. Porter, and M. Vij. Graphene-sgx: A practical library OS for unmodified applications on SGX. In USENIX ATC, pages 645\u2013658, 2017."},{"key":"2022043002453373581_j_popets-2019-0052_ref_014_w2aab3b7c20b1b6b1ab1ac14Aa","unstructured":"[14] V. Costan and S. Devadas. Intel SGX explained. IACR Cryptology ePrint Archive, 2016:86, 2016."},{"key":"2022043002453373581_j_popets-2019-0052_ref_015_w2aab3b7c20b1b6b1ab1ac15Aa","doi-asserted-by":"crossref","unstructured":"[15] F. Dall, G. D. Micheli, T. Eisenbarth, D. Genkin, N. Heninger, A. Moghimi, and Y. Yarom. Cachequote: Efficiently recovering long-term secrets of SGX EPID via cache attacks. IACR Trans. Cryptogr. Hardw. Embed. Syst., 2018(2):171\u2013191, 2018.","DOI":"10.46586\/tches.v2018.i2.171-191"},{"key":"2022043002453373581_j_popets-2019-0052_ref_016_w2aab3b7c20b1b6b1ab1ac16Aa","unstructured":"[16] V. data breach incident report. https:\/\/regmedia.co.uk\/2016\/05\/12\/dbir_2016.pdf, 2016."},{"key":"2022043002453373581_j_popets-2019-0052_ref_017_w2aab3b7c20b1b6b1ab1ac17Aa","unstructured":"[17] M. Dzulfakar. Advanced mysql exploitation. Black Hat Las Vegas, 2009."},{"key":"2022043002453373581_j_popets-2019-0052_ref_018_w2aab3b7c20b1b6b1ab1ac18Aa","unstructured":"[18] S. Eskandarian and M. Zaharia. An oblivious general-purpose SQL database for the cloud. CoRR, abs\/1710.00458, 2017."},{"key":"2022043002453373581_j_popets-2019-0052_ref_019_w2aab3b7c20b1b6b1ab1ac19Aa","doi-asserted-by":"crossref","unstructured":"[19] S. Faber, S. Jarecki, H. Krawczyk, Q. Nguyen, M. Rosu, and M. Steiner. Rich queries on encrypted data: Beyond exact matches. In ESORICS II, pages 123\u2013145, 2015.10.1007\/978-3-319-24177-7_7","DOI":"10.1007\/978-3-319-24177-7_7"},{"key":"2022043002453373581_j_popets-2019-0052_ref_020_w2aab3b7c20b1b6b1ab1ac20Aa","unstructured":"[20] B. Fisch, D. Vinayagamurthy, D. Boneh, and S. Gorbunov. IRON: functional encryption using intel SGX. In CCS, pages 765\u2013782, 2017."},{"key":"2022043002453373581_j_popets-2019-0052_ref_021_w2aab3b7c20b1b6b1ab1ac21Aa","doi-asserted-by":"crossref","unstructured":"[21] B. Fuhry, R. Bahmani, F. Brasser, F. Hahn, F. Kerschbaum, and A. Sadeghi. Hardidx: Practical and secure index with SGX. In DBSec, pages 386\u2013408, 2017.10.1007\/978-3-319-61176-1_22","DOI":"10.1007\/978-3-319-61176-1_22"},{"key":"2022043002453373581_j_popets-2019-0052_ref_022_w2aab3b7c20b1b6b1ab1ac22Aa","doi-asserted-by":"crossref","unstructured":"[22] B. Fuller, M. Varia, A. Yerukhimovich, E. Shen, A. Hamlin, V. Gadepally, R. Shay, J. D. Mitchell, and R. K. Cunningham. Sok: Cryptographically protected database search. In IEEE SP, pages 172\u2013191, 2017.10.1109\/SP.2017.10","DOI":"10.1109\/SP.2017.10"},{"key":"2022043002453373581_j_popets-2019-0052_ref_023_w2aab3b7c20b1b6b1ab1ac23Aa","unstructured":"[23] T. Garfinkel and M. Rosenblum. When virtual is harder than real: Security challenges in virtual machine based computing environments. In HotOS, 2005."},{"key":"2022043002453373581_j_popets-2019-0052_ref_024_w2aab3b7c20b1b6b1ab1ac24Aa","doi-asserted-by":"crossref","unstructured":"[24] C. Gentry. Fully homomorphic encryption using ideal lattices. In STOC, pages 169\u2013178, 2009.10.1145\/1536414.1536440","DOI":"10.1145\/1536414.1536440"},{"key":"2022043002453373581_j_popets-2019-0052_ref_025_w2aab3b7c20b1b6b1ab1ac25Aa","doi-asserted-by":"crossref","unstructured":"[25] O. Goldreich and R. Ostrovsky. Software protection and simulation on oblivious rams. J. ACM, 43(3):431\u2013473, 1996.10.1145\/233551.233553","DOI":"10.1145\/233551.233553"},{"key":"2022043002453373581_j_popets-2019-0052_ref_026_w2aab3b7c20b1b6b1ab1ac26Aa","unstructured":"[26] Google. Encrypted BigQuery client. https:\/\/github.com\/google\/encrypted-bigquery-client, 2017."},{"key":"2022043002453373581_j_popets-2019-0052_ref_027_w2aab3b7c20b1b6b1ab1ac27Aa","doi-asserted-by":"crossref","unstructured":"[27] P. Grofig, I. Hang, M. H\u00e4rterich, F. Kerschbaum, M. Kohler, A. Schaad, A. Schr\u00f6pfer, and W. Tighzert. Privacy by encrypted databases. In Annual Privacy Forum, pages 56\u201369. Springer, 2014.10.1007\/978-3-319-06749-0_4","DOI":"10.1007\/978-3-319-06749-0_4"},{"key":"2022043002453373581_j_popets-2019-0052_ref_028_w2aab3b7c20b1b6b1ab1ac28Aa","doi-asserted-by":"crossref","unstructured":"[28] P. Grubbs, M. Lacharit\u00e9, B. Minaud, and K. G. Paterson. Pump up the volume: Practical database reconstruction from volume leakage on range queries. In CCS, pages 315\u2013331, 2018.10.1145\/3243734.3243864","DOI":"10.1145\/3243734.3243864"},{"key":"2022043002453373581_j_popets-2019-0052_ref_029_w2aab3b7c20b1b6b1ab1ac29Aa","doi-asserted-by":"crossref","unstructured":"[29] P. Grubbs, R. McPherson, M. Naveed, T. Ristenpart, and V. Shmatikov. Breaking web applications built on top of encrypted data. In ACM CCS, pages 1353\u20131364, 2016.10.1145\/2976749.2978351","DOI":"10.1145\/2976749.2978351"},{"key":"2022043002453373581_j_popets-2019-0052_ref_030_w2aab3b7c20b1b6b1ab1ac30Aa","doi-asserted-by":"crossref","unstructured":"[30] P. Grubbs, T. Ristenpart, and V. Shmatikov. Why your encrypted database is not secure. In HotOS, pages 162\u2013168, 2017.10.1145\/3102980.3103007","DOI":"10.1145\/3102980.3103007"},{"key":"2022043002453373581_j_popets-2019-0052_ref_031_w2aab3b7c20b1b6b1ab1ac31Aa","unstructured":"[31] B. D. A. Guimaraes. Advanced sql injection to operating system full control. Black Hat Europe, 2009."},{"key":"2022043002453373581_j_popets-2019-0052_ref_032_w2aab3b7c20b1b6b1ab1ac32Aa","doi-asserted-by":"crossref","unstructured":"[32] S. Halevi and V. Shoup. Algorithms in helib. In CRYPTO I, pages 554\u2013571, 2014.10.1007\/978-3-662-44371-2_31","DOI":"10.1007\/978-3-662-44371-2_31"},{"key":"2022043002453373581_j_popets-2019-0052_ref_033_w2aab3b7c20b1b6b1ab1ac33Aa","unstructured":"[33] T. Hunt, Z. Zhu, Y. Xu, S. Peter, and E. Witchel. Ryoan: A distributed sandbox for untrusted computation on secret data. In OSDI, pages 533\u2013549, 2016."},{"key":"2022043002453373581_j_popets-2019-0052_ref_034_w2aab3b7c20b1b6b1ab1ac34Aa","doi-asserted-by":"crossref","unstructured":"[34] Y. Ishai, E. Kushilevitz, S. Lu, and R. Ostrovsky. Private large-scale databases with distributed searchable symmetric encryption. In CT-RSA, pages 90\u2013107, 2016.10.1007\/978-3-319-29485-8_6","DOI":"10.1007\/978-3-319-29485-8_6"},{"key":"2022043002453373581_j_popets-2019-0052_ref_035_w2aab3b7c20b1b6b1ab1ac35Aa","doi-asserted-by":"crossref","unstructured":"[35] G. Kellaris, G. Kollios, K. Nissim, and A. O\u2019Neill. Generic attacks on secure outsourced databases. In CCS, pages 1329\u20131340, 2016.10.1145\/2976749.2978386","DOI":"10.1145\/2976749.2978386"},{"key":"2022043002453373581_j_popets-2019-0052_ref_036_w2aab3b7c20b1b6b1ab1ac36Aa","unstructured":"[36] J. Lee, J. S. Jang, Y. Jang, N. Kwak, Y. Choi, C. Choi, T. Kim, M. Peinado, and B. B. Kang. Hacking in darkness: Return-oriented programming against secure enclaves. In USENIX Security, pages 523\u2013539, 2017."},{"key":"2022043002453373581_j_popets-2019-0052_ref_037_w2aab3b7c20b1b6b1ab1ac37Aa","unstructured":"[37] S. Lee, M. Shih, P. Gera, T. Kim, H. Kim, and M. Peinado. Inferring fine-grained control flow inside SGX enclaves with branch shadowing. In USENIX Security, pages 557\u2013574, 2017."},{"key":"2022043002453373581_j_popets-2019-0052_ref_038_w2aab3b7c20b1b6b1ab1ac38Aa","doi-asserted-by":"crossref","unstructured":"[38] K. Lewi and D. J. Wu. Order-revealing encryption: New constructions, applications, and lower bounds. In CCS, pages 1167\u20131178, 2016.10.1145\/2976749.2978376","DOI":"10.1145\/2976749.2978376"},{"key":"2022043002453373581_j_popets-2019-0052_ref_039_w2aab3b7c20b1b6b1ab1ac39Aa","doi-asserted-by":"crossref","unstructured":"[39] F. McKeen, I. Alexandrovich, A. Berenzon, C. V. Rozas, H. Shafi, V. Shanbhogue, and U. R. Savagaonkar. Innovative instructions and software model for isolated execution. In HASP, page 10, 2013.10.1145\/2487726.2488368","DOI":"10.1145\/2487726.2488368"},{"key":"2022043002453373581_j_popets-2019-0052_ref_040_w2aab3b7c20b1b6b1ab1ac40Aa","unstructured":"[40] Microsoft SQL Server 2016. Always encrypted database engine. https:\/\/msdn.microsoft.com\/en-us\/library\/mt163865.aspx, 2017."},{"key":"2022043002453373581_j_popets-2019-0052_ref_041_w2aab3b7c20b1b6b1ab1ac41Aa","doi-asserted-by":"crossref","unstructured":"[41] M. Naveed, S. Kamara, and C. V. Wright. Inference attacks on property-preserving encrypted databases. In ACM CCS, pages 644\u2013655, 2015.10.1145\/2810103.2813651","DOI":"10.1145\/2810103.2813651"},{"key":"2022043002453373581_j_popets-2019-0052_ref_042_w2aab3b7c20b1b6b1ab1ac42Aa","unstructured":"[42] O. Ohrimenko, F. Schuster, C. Fournet, A. Mehta, S. Nowozin, K. Vaswani, and M. Costa. Oblivious multi-party machine learning on trusted processors. In USENIX Security, pages 619\u2013636, 2016."},{"key":"2022043002453373581_j_popets-2019-0052_ref_043_w2aab3b7c20b1b6b1ab1ac43Aa","doi-asserted-by":"crossref","unstructured":"[43] M. Orenbach, P. Lifshits, M. Minkin, and M. Silberstein. Eleos: Exitless OS services for SGX enclaves. In EuroSys, pages 238\u2013253, 2017.10.1145\/3064176.3064219","DOI":"10.1145\/3064176.3064219"},{"key":"2022043002453373581_j_popets-2019-0052_ref_044_w2aab3b7c20b1b6b1ab1ac44Aa","unstructured":"[44] A. Papadimitriou, R. Bhagwan, N. Chandran, R. Ramjee, A. Haeberlen, H. Singh, A. Modi, and S. Badrinarayanan. Big data analytics over encrypted datasets with seabed. In OSDI, pages 587\u2013602, 2016."},{"key":"2022043002453373581_j_popets-2019-0052_ref_045_w2aab3b7c20b1b6b1ab1ac45Aa","doi-asserted-by":"crossref","unstructured":"[45] V. Pappas, F. Krell, B. Vo, V. Kolesnikov, T. Malkin, S. G. Choi, W. George, A. D. Keromytis, and S. M. Bellovin. Blind seer: A scalable private DBMS. In IEEE SP, pages 359\u2013374, 2014.10.1109\/SP.2014.30","DOI":"10.1109\/SP.2014.30"},{"key":"2022043002453373581_j_popets-2019-0052_ref_046_w2aab3b7c20b1b6b1ab1ac46Aa","unstructured":"[46] R. Poddar, T. Boelter, and R. A. Popa. Arx: A strongly encrypted database system. IACR Cryptology ePrint Archive, 2016:591, 2016."},{"key":"2022043002453373581_j_popets-2019-0052_ref_047_w2aab3b7c20b1b6b1ab1ac47Aa","doi-asserted-by":"crossref","unstructured":"[47] R. A. Popa, C. M. S. Redfield, N. Zeldovich, and H. Balakrishnan. Cryptdb: protecting confidentiality with encrypted query processing. In SOSP, pages 85\u2013100, 2011.10.1145\/2043556.2043566","DOI":"10.1145\/2043556.2043566"},{"key":"2022043002453373581_j_popets-2019-0052_ref_048_w2aab3b7c20b1b6b1ab1ac48Aa","unstructured":"[48] PostgreSQL 9.5.10 Documentation. Extensions. https:\/\/www.postgresql.org\/docs\/9.5\/static\/external-extensions.html, 2018. Accessed: 2018-01-29."},{"key":"2022043002453373581_j_popets-2019-0052_ref_049_w2aab3b7c20b1b6b1ab1ac49Aa","doi-asserted-by":"crossref","unstructured":"[49] C. Priebe, K. Vaswani, and M. Costa. Enclavedb: A secure database using SGX. In IEEE SP, pages 264\u2013278, 2018.10.1109\/SP.2018.00025","DOI":"10.1109\/SP.2018.00025"},{"key":"2022043002453373581_j_popets-2019-0052_ref_050_w2aab3b7c20b1b6b1ab1ac50Aa","unstructured":"[50] T. Ristenpart and S. Yilek. When good randomness goes bad: Virtual machine reset vulnerabilities and hedging deployed cryptography. In NDSS, 2010."},{"key":"2022043002453373581_j_popets-2019-0052_ref_051_w2aab3b7c20b1b6b1ab1ac51Aa","doi-asserted-by":"crossref","unstructured":"[51] F. Schuster, M. Costa, C. Fournet, C. Gkantsidis, M. Peinado, G. Mainar-Ruiz, and M. Russinovich. VC3: trustworthy data analytics in the cloud using SGX. In IEEE SP, pages 38\u201354, 2015.10.1109\/SP.2015.10","DOI":"10.1109\/SP.2015.10"},{"key":"2022043002453373581_j_popets-2019-0052_ref_052_w2aab3b7c20b1b6b1ab1ac52Aa","doi-asserted-by":"crossref","unstructured":"[52] M. Schwarz, S. Weiser, D. Gruss, C. Maurice, and S. Mangard. Malware guard extension: Using SGX to conceal cache attacks. In DIMVA, pages 3\u201324, 2017.10.1007\/978-3-319-60876-1_1","DOI":"10.1007\/978-3-319-60876-1_1"},{"key":"2022043002453373581_j_popets-2019-0052_ref_053_w2aab3b7c20b1b6b1ab1ac53Aa","doi-asserted-by":"crossref","unstructured":"[53] C. Tsai, K. S. Arora, N. Bandi, B. Jain, W. Jannen, J. John, H. A. Kalodner, V. Kulkarni, D. Oliveira, and D. E. Porter. Cooperation and security isolation of library oses for multiprocess applications. In EuroSys 2014, pages 9:1\u20139:14, 2014.10.1145\/2592798.2592812","DOI":"10.1145\/2592798.2592812"},{"key":"2022043002453373581_j_popets-2019-0052_ref_054_w2aab3b7c20b1b6b1ab1ac54Aa","doi-asserted-by":"crossref","unstructured":"[54] N. Weichbrodt, A. Kurmus, P. R. Pietzuch, and R. Kapitza. Asyncshock: Exploiting synchronisation bugs in intel SGX enclaves. In ESORICS I, pages 440\u2013457, 2016.10.1007\/978-3-319-45744-4_22","DOI":"10.1007\/978-3-319-45744-4_22"},{"key":"2022043002453373581_j_popets-2019-0052_ref_055_w2aab3b7c20b1b6b1ab1ac55Aa","doi-asserted-by":"crossref","unstructured":"[55] Y. Xu, W. Cui, and M. Peinado. Controlled-channel attacks: Deterministic side channels for untrusted operating systems. In IEEE SP, pages 640\u2013656, 2015.10.1109\/SP.2015.45","DOI":"10.1109\/SP.2015.45"},{"key":"2022043002453373581_j_popets-2019-0052_ref_056_w2aab3b7c20b1b6b1ab1ac56Aa","unstructured":"[56] W. Zheng, A. Dave, J. G. Beekman, R. A. Popa, J. E. Gonzalez, and I. Stoica. Opaque: An oblivious and encrypted distributed analytics platform. In NSDI, pages 283\u2013298, 2017."}],"container-title":["Proceedings on Privacy Enhancing Technologies"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/content.sciendo.com\/view\/journals\/popets\/2019\/3\/article-p370.xml","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.sciendo.com\/pdf\/10.2478\/popets-2019-0052","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,20]],"date-time":"2022-07-20T16:30:35Z","timestamp":1658334635000},"score":1,"resource":{"primary":{"URL":"https:\/\/petsymposium.org\/popets\/2019\/popets-2019-0052.php"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,7,1]]},"references-count":56,"journal-issue":{"issue":"3","published-online":{"date-parts":[[2019,7,12]]},"published-print":{"date-parts":[[2019,7,1]]}},"alternative-id":["10.2478\/popets-2019-0052"],"URL":"https:\/\/doi.org\/10.2478\/popets-2019-0052","relation":{},"ISSN":["2299-0984"],"issn-type":[{"value":"2299-0984","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,7,1]]}}}