Mobile App to SGX Enclave Secure Channel

Carvalho Ota, Fernando Kaway; Meira, Jorge Augusto; Cassagnes, Cyril; State, Radu

doi:10.1109/ISSREW.2019.00081

Reference : Mobile App to SGX Enclave Secure Channel


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a book
	Discipline(s) :	Engineering, computing & technology : Computer science
	Focus Areas :	Security, Reliability and Trust
	To cite this reference:	http://hdl.handle.net/10993/44341

Title :	Mobile App to SGX Enclave Secure Channel
Language :	English
Author, co-author :	Carvalho Ota, Fernando Kaway [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Meira, Jorge Augusto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Cassagnes, Cyril [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	State, Radu [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Publication date :	13-Feb-2020
Main document title :	2019 IEEE International Symposium on Software Reliability Engineering Workshops
Peer reviewed :	Yes
On invitation :	No
Audience :	International
Event name :	IEEE International Symposium on Software Reliability Engineering
Event date :	27-30 Oct. 2019
Event place (city) :	Berlin
Event country :	Germany
Keywords :	[en] SGX ; secure channel ; mobile security ; GDPR ; trusted execution ; data breach
Abstract :	[en] The current challenge for several applications is to guarantee the user’s privacy when using personal data. The broader problem is to transfer and process the data without exposing the sensitive content to anyone, including the service provider(s). In this paper, we address this challenge by proposing a protocol to combine secure frameworks in order to exchange and process sensitive data, i.e. respecting user’s privacy. Our contribution is a protocol to perform a secure exchange of data between a mobile application and a trusted execution environment. In our experiments we show independent implementations of our protocol using three different encryption modes (i.e., CBC, ECB, GCM encryption). Our results support the feasibility and importance of an end-to-end secure channel protocol.
Research centres :	Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Services and Data management research group (SEDAN)
Target :	Researchers ; Professionals ; General public
Permalink :	http://hdl.handle.net/10993/44341
DOI :	10.1109/ISSREW.2019.00081
Other URL :	https://ieeexplore.ieee.org/document/8990343

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Limited access	08990343.pdf		Publisher postprint	462 kB	Request a copy

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices