On (the Lack of) Code Confidentiality in Trusted Execution Environments

OPEN ACCESS

Downloads

Full text (accepted version) (PDF, 1.76 MB)

Author / Producer

Lain, Daniele

Date

2024

Publication Type

Conference Paper

ETH Bibliography

yes

Citations

Altmetric
OPEN ACCESS

Downloads

Full text (accepted version) (PDF, 1.76 MB)

Data

Rights / License

In Copyright - Non-Commercial Use Permitted north_east

Abstract

Trusted Execution Environments (TEEs) have been proposed as a solution to protect code confidentiality in scenarios where computation is outsourced to an untrusted operator. We study the resilience of such solutions to side-channel attacks in two commonly deployed scenarios: when the confidential code is a native binary that is shipped and executed within a TEE and when the confidential code is an intermediate representation (IR) executed on top of a runtime within a TEE. We show that executing IR code such as WASM bytecode on a runtime executing in a TEE leaks most IR instructions with high accuracy and therefore reveals the confidential code. Contrary to IR execution, native execution is much less susceptible to leakage and largely resists even the most powerful side-channel attacks. We evaluate native execution leakage in Intel SGX and AMD SEV and experimentally demonstrate end-to-end instruction extraction on Intel SGX, with WASM bytecode as IR executed within two popular WASM runtimes: WAMR and wasmi. Our experiments show that IR code leakage from such systems is practical and therefore question the security claims of several commercial solutions which rely on TEEs+WASM for code confidentiality.

Permanent link

https://doi.org/10.3929/ethz-b-000672641

Publication status

published

External links

https://doi.org/10.1109/SP54263.2024.00259 north_east

Editor

Book title

2024 IEEE Symposium on Security and Privacy (SP)

Journal / series

Volume

Pages / Article No.

4125 - 4142

Publisher

IEEE

Event

45th IEEE Symposium on Security and Privacy (SP 2024)

Edition / version

Methods

Software

Geographic location

Date collected

Date created

Subject

Trusted Execution Environment; TEE; WASM; Side-channel analysis; Intel SGX; AMD SEV; Code confidentiality; Confidential Computing

Organisational unit

03755 - Capkun, Srdan / Capkun, Srdan check_circle

Notes

Funding

Related publications and datasets

More

Show all metadata