Out-of-order execution and speculative execution are among the biggest contributors to
performance and efficiency of modern processors. However, they are inconsiderate, leaking …

As control flow hijacking attacks become more challenging due to the deployment of various
exploit mitigation technologies, the leakage of sensitive process data through the …

Library OSs have been proposed to deploy applications isolated inside containers, VMs, or
trusted execution environments. They often follow a highly modular design in which third …

Protecting confidential data against memory disclosure attacks is crucial to many critical
applications, especially those involve cryptographic operations. However, it is neither easy …

Cloud providers are extending support for trusted hardware primitives such as Intel SGX.
Simultaneously, the field of deep learning is seeing enormous innovation as well as an …

Information leakage vulnerabilities (or simply info leaks) such as out-of-bounds/uninitialized
reads in the architectural or speculative domain pose a significant security threat, allowing …

Trusted execution environments (TEEs) promise a cost-effective,“lift-and-shift” solution for
deploying security-sensitive applications in untrusted clouds. For this, they must support rich …

Modern applications often involve the processing of sensitive information. However, the lack
of privilege separation within the user space leaves sensitive application secrets such as …

Privilege separation (privsep) is an effective technique for improving software's security, but
privsep involves decomposing software into components and assigning them different …

Address space layout randomization (ASLR) can hide code addresses, which has been
widely adopted by security solutions. However, code probes can bypass it. In real attack …