New hardware primitives such as Intel SGX secure a user-level process in presence of an
untrusted or compromised OS. Such" enclaved execution" systems are vulnerable to several …

We present CacheAudit, a versatile framework for the automatic, static analysis of cache
side channels. CacheAudit takes as input a program binary and a cache configuration and …

We propose a method, based on program analysis and transformation, for eliminating timing
side channels in software code that implements security-critical applications. Our method …

We investigate techniques for general black-box mitigation of timing channels. The source of
events is wrapped by a timing mitigator that delays output events so that they contain only a …

The latency gap between caches and main memory has been successfully exploited for
recovering sensitive input to programs, such as cryptographic keys from implementation of …

Timing channels remain a difficult and important problem for information security. Recent
work introduced predictive mitigation, a new way to mitigating leakage through timing …

Oblivious RAM (ORAM) is an established cryptographic technique to hide a program's
address pattern to an untrusted storage system. More recently, ORAM schemes have been …

Protecting sensitive information from improper disclosure is a fundamental security goal. It is
complicated, and difficult to achieve, often because of unavoidable or even unpredictable …

There are two active and independent lines of research that aim at quantifying the amount of
information that is disclosed by computing on confidential data. Each line of research has …

Power side channel is a very important category of side channels, which can be exploited to
steal confidential information from a computing system by analyzing its power consumption …