Commodity CPU architectures, such as ARM and Intel CPUs, have started to offer trusted
computing features in their CPUs aimed at displacing dedicated trusted hardware …

We introduce Speicher, a secure storage system that not only provides strong confidentiality
and integrity properties, but also ensures data freshness to protect against rollback/forking …

Protected-module architectures such as Intel SGX provide strong isolation guarantees to
sensitive parts of applications while the system is up and running. Unfortunately systems in …

Today's infrastructure as a service (IaaS) cloud environments rely upon full trust in the
provider to secure applications and data. Cloud providers do not offer the ability to create …

Current Trusted Platform Modules (TPMs) are ill-suited for cross-device scenarios in trusted
mobile applications because they hinder the seamless sharing of data across multiple …

In today's data processing systems, both the policies protecting stored data and the
mechanisms for their enforcement are spread over many software components and …

A lease is an important primitive for building distributed protocols, and it is ubiquitously
employed in distributed systems. However, the scope of the classic lease abstraction is …

The amount of trust that can be placed in commodity computing platforms is limited by the
likelihood of vulnerabilities in their huge software stacks. Protected-module architectures …

An accurate sense of elapsed time is essential for the safe and correct operation of
hardware, software, and networked systems. Unfortunately, an adversary can manipulate …

As devices in the Internet of Things (IoT) increase in number and integrate with everyday
lives, large amounts of personal information will be generated. With multiple discovered …