Your browser does not support JavaScript!

Home    Collections    Type of Work    Doctoral theses  

Doctoral theses

Search command : Author="Στεφανίδης"  And Author="Κωνσταντίνος"

Current Record: 15 of 2410

Back to Results Previous page
Next page
Add to Basket
[Add to Basket]
Identifier 000460297
Title Full stack protection leveraging user-level enclaves
Alternative Title Πλήρης προστασία της υπολογιστικής στοίβας χρησιμοποιώντας ασφαλείς θύλακες στο επίπεδο του χρήστη
Author Ντεγιάννης, Δημήτριος Α
Thesis advisor Ιωαννίδης, Σωτήρης
Reviewer Μαρκάτος, Ευάγγελος
Πολυχρονάκης, Μιχάλης
Παπαδοπούλη, Μαρία
Δημητρόπουλος, Ξενοφώντας
Μαγκούτης, Κώστας
Βασιλάκης, Νίκος
Abstract Over the past few decades, computing power, storage capabilities, and network technologies have experienced exponential growth, driven by breakthroughs in hardware and software development. These advancements have brought profound transformations in various aspects of human life, making computing devices, from desktops and laptops to smartphones and embedded systems, affordable and readily available to everyday users. Also, the widespread adoption of the Internet, the emergence of mobile networks, and the advent of cloud computing have interconnected these devices like never before, revolutionizing the way information is shared, collected, stored, and analyzed. However, these rapid technological advancements have led to the development of complex hardware and software ecosystems and come with serious challenges and concerns regarding their security and the privacy of their users. The traditional systems tasked to safeguard the various layers of modern computing systems are becoming more complex, while adversaries utilize years of experience and advanced techniques to exploit the everincreasing attack surfaces. To address this issue, the research community and the industry propose novel systems, targeting specific use cases, that manage to achieve their goal but often are too specialized to be interoperable or adopted by the end users. In this work, we explore the design and implementation of a modular framework that aims to raise the security bar at four core layers, providing interoperable components that can be utilized by a wide range of devices, ranging from end-user systems to cloud infrastructure. We base our work on Trusted Execution Environments (TEEs), a technology available to complex systems as well as common computing devices and prove that this platform can serve as a common base for building efficient and interoperable security systems, able to safeguard hosts, computations, communications, data management, and the security mechanisms themselves. In addition, we propose techniques to extend the capabilities of modern TEEs, enabling secure execution of unmodified applications developed with high-level languages, secure distributed execution of such applications, and leverage the sandboxing properties of TEEs to enable privacy-preserving computations in the cloud. Finally, we evaluate our work using off-the-shelf hardware with real applications and datasets to highlight the efficiency and practicality of the proposed architecture.
Language English
Subject Android
Attested communication
Kernel integrity
Malware detection
SGX
Secure automated scaling
Secure dynamic execution
Trusted execution environmet
Ακεραιότητα πυρήνα
Ανίχνευση κακόβουλου λογισμικού
Ασφαλής αυτοματοποιημένη κλιμακοποίηση
Ασφαλής δυναμική εκτέλεση
Περιβάλλον ασφαλούς εκτέλεσης
Πιστοποιημένη επικοινωνία
Issue date 2023-12-01
Collection   School/Department--School of Sciences and Engineering--Department of Computer Science--Doctoral theses
  Type of Work--Doctoral theses
Permanent Link https://elocus.lib.uoc.gr//dlib/5/8/5/metadata-dlib-1699859516-771001-31245.tkl Bookmark and Share
Views 828

Digital Documents
No preview available

Download document
View document
Views : 2