Mobile App to SGX Enclave Secure Channel
2019 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW)
Pub Date : 2019-10-01
DOI:10.1109/ISSREW.2019.00081
引用次数: 3
Abstract
The current challenge for several applications is to guarantee the user's privacy when using personal data. The broader problem is to transfer and process the data without exposing the sensitive content to anyone, including the service provider(s). In this paper, we address this challenge by proposing a protocol to combine secure frameworks in order to exchange and process sensitive data, i.e. respecting user's privacy. Our contribution is a protocol to perform a secure exchange of data between a mobile application and a trusted execution environment. In our experiments we show independent implementations of our protocol using three different encryption modes (i.e., CBC, ECB, GCM encryption). Our results support the feasibility and importance of an end-to-end secure channel protocol.移动应用程序到新交所Enclave安全通道
目前许多应用程序面临的挑战是在使用个人数据时保证用户的隐私。更广泛的问题是在传输和处理数据时不向任何人(包括服务提供商)暴露敏感内容。在本文中,我们通过提出一种协议来解决这一挑战,该协议结合了安全框架,以便交换和处理敏感数据,即尊重用户隐私。我们的贡献是一个在移动应用程序和可信执行环境之间执行安全数据交换的协议。在我们的实验中,我们展示了使用三种不同加密模式(即CBC, ECB, GCM加密)的协议的独立实现。我们的结果支持了端到端安全信道协议的可行性和重要性。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文
求助全文
来源期刊
自引率
0.00%
发文量
0
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
