Moderation Log

Date/Time Moderator Story/Comment/User, Action, Reason
2019-12-28 20:12 -0600 gkaptchuk Tag: CryptoStandards
Action: Updating tag CryptoStandards, changed id from '' to '87', changed tag from '' to 'CryptoStandards', changed description from '' to 'Cryptographic Standards'
2019-12-28 20:01 -0600 gkaptchuk Tag: PQC
Action: Updating tag PQC, changed id from '' to '86', changed tag from '' to 'PQC', changed description from '' to 'Post Quantum Cryptography'
2019-12-28 19:32 -0600 gkaptchuk Tag: BFT
Action: Updating tag BFT, changed id from '' to '85', changed tag from '' to 'BFT', changed description from '' to ''
2019-12-28 19:31 -0600 gkaptchuk Tag: SecretSharing
Action: Updating tag SecretSharing, changed id from '' to '84', changed tag from '' to 'SecretSharing', changed description from '' to ''
2019-12-28 19:07 -0600 gkaptchuk Tag: Cloud
Action: Updating tag Cloud, changed id from '' to '83', changed tag from '' to 'Cloud', changed description from '' to 'Cloud'
2019-12-28 19:00 -0600 gkaptchuk Tag: MachineCheckedProof
Action: Updating tag MachineCheckedProof, changed id from '' to '82', changed tag from '' to 'MachineCheckedProof', changed description from '' to 'Machine Checked Proof'
2019-12-28 18:49 -0600 gkaptchuk Tag: 2020
Action: Updating tag 2020, changed id from '' to '81', changed tag from '' to '2020', changed description from '' to '2020'
2019-09-25 14:10 -0500 gkaptchuk Tag: EuroS&P
Action: Updating tag EuroS&P, changed id from '' to '80', changed tag from '' to 'EuroS&P', changed description from '' to ''
2019-09-25 14:10 -0500 gkaptchuk Tag: Crypto
Action: Updating tag Crypto, changed id from '' to '79', changed tag from '' to 'Crypto', changed description from '' to ''
2019-09-25 14:10 -0500 gkaptchuk Tag: Asiacrypt
Action: Updating tag Asiacrypt, changed id from '' to '78', changed tag from '' to 'Asiacrypt', changed description from '' to ''
2019-09-25 14:10 -0500 gkaptchuk Tag: Eurocrypt
Action: Updating tag Eurocrypt, changed id from '' to '77', changed tag from '' to 'Eurocrypt', changed description from '' to ''
2019-09-24 21:10 -0500 gkaptchuk Tag: PGP
Action: Updating tag PGP, changed id from '' to '76', changed tag from '' to 'PGP', changed description from '' to ''
2019-09-24 21:09 -0500 gkaptchuk Tag: IKE
Action: Updating tag IKE, changed id from '' to '75', changed tag from '' to 'IKE', changed description from '' to ''
2019-09-24 21:09 -0500 gkaptchuk Tag: SideChannels
Action: Updating tag SideChannels, changed id from '' to '74', changed tag from '' to 'SideChannels', changed description from '' to ''
2019-09-24 21:07 -0500 gkaptchuk Tag: Surveillance
Action: Updating tag Surveillance, changed id from '' to '73', changed tag from '' to 'Surveillance', changed description from '' to ''
2019-09-24 18:36 -0500 gkaptchuk Tag: GarbledCircuits
Action: Updating tag GarbledCircuits, changed id from '' to '72', changed tag from '' to 'GarbledCircuits', changed description from '' to ''
2019-09-24 18:32 -0500 gkaptchuk Tag: SmartContracts
Action: Updating tag SmartContracts, changed id from '' to '71', changed tag from '' to 'SmartContracts', changed description from '' to ''
2019-04-08 21:34 -0500 tusharjois Tag: PKI
Action: Updating tag PKI, changed id from '' to '70', changed tag from '' to 'PKI', changed description from '' to ''
2019-04-08 19:26 -0500 tusharjois Tag: Hashing
Action: Updating tag Hashing, changed id from '' to '69', changed tag from '' to 'Hashing', changed description from '' to ''
2019-04-08 18:22 -0500 tusharjois Tag: Certificates
Action: Updating tag Certificates, changed id from '' to '68', changed tag from '' to 'Certificates', changed description from '' to ''
2019-04-07 21:04 -0500 gkaptchuk Tag: Authentication
Action: Updating tag Authentication, changed id from '' to '67', changed tag from '' to 'Authentication', changed description from '' to ''
2019-04-05 19:20 -0500 mgreen Story: Improved Reconstruction Attacks on Encrypted Data Using Range Query Leakage
Action: changed tags from "2018 Oakland EncryptedDatabases" to "2018 Oakland EncryptedDatabases Attacks"
2019-04-03 14:37 -0500 gkaptchuk Story: OBFUSCURO: A Commodity Obfuscation Engine on Intel SGX
Action: changed description from "Program obfuscation is a popular cryptographic\r\nconstruct with a wide range of uses such as IP theft prevention. Although\r\ncryptographic solutions for program obfuscation impose\r\nimpractically high overheads, a recent breakthrough leveraging\r\ntrusted hardware has shown promise. However, the existing\r\nsolution is based on special-purpose trusted hardware, restricting\r\nits use-cases to a limited few.\r\n\r\nIn this paper, we first study if such obfuscation is feasible\r\nbased on commodity trusted hardware, Intel SGX, and we\r\nobserve that certain important security considerations are not\r\nafforded by commodity hardware. In particular, we found that\r\nexisting obfuscation/obliviousness schemes are insecure if directly\r\napplied to Intel SGX primarily due to side-channel limitations.\r\nTo this end, we present OBFUSCURO, the first system providing\r\nprogram obfuscation using commodity trusted hardware, Intel\r\nSGX. The key idea is to leverage ORAM operations to perform\r\nsecure code execution and data access. Initially, OBFUSCURO\r\ntransforms the regular program layout into a side-channel-secure\r\nand ORAM-compatible layout. Then, OBFUSCURO ensures\r\nthat its ORAM controller performs data oblivious accesses in\r\norder to protect itself from all memory-based side-channels.\r\nFurthermore, OBFUSCURO ensures that the program is secure\r\nfrom timing attacks by ensuring that the program always runs\r\nfor a pre-configured time interval. Along the way, OBFUSCURO\r\nalso introduces a systematic optimization such as register-based\r\nORAM stash. We provide a thorough security analysis of\r\nOBFUSCURO along with empirical attack evaluations showing\r\nthat OBFUSCURO can protect the SGX program execution from\r\nbeing leaked by access pattern-based and timing-based channels.\r\nWe also provide a detailed performance benchmark results in\r\norder to show the practical aspects of OBFUSCURO." to "Program obfuscation is a popular cryptographic construct with a wide range of uses such as IP theft prevention. Although cryptographic solutions for program obfuscation impose impractically high overheads, a recent breakthrough leveraging trusted hardware has shown promise. However, the existing solution is based on special-purpose trusted hardware, restricting its use-cases to a limited few.\r\n\r\nIn this paper, we first study if such obfuscation is feasible based on commodity trusted hardware, Intel SGX, and we observe that certain important security considerations are not afforded by commodity hardware. In particular, we found that existing obfuscation/obliviousness schemes are insecure if directly applied to Intel SGX primarily due to side-channel limitations. To this end, we present OBFUSCURO, the first system providing program obfuscation using commodity trusted hardware, Intel SGX. The key idea is to leverage ORAM operations to perform secure code execution and data access. Initially, OBFUSCURO transforms the regular program layout into a side-channel-secure and ORAM-compatible layout. Then, OBFUSCURO ensures that its ORAM controller performs data oblivious accesses in order to protect itself from all memory-based side-channels. Furthermore, OBFUSCURO ensures that the program is secure from timing attacks by ensuring that the program always runs for a pre-configured time interval. Along the way, OBFUSCURO also introduces a systematic optimization such as register-based ORAM stash. We provide a thorough security analysis of OBFUSCURO along with empirical attack evaluations showing that OBFUSCURO can protect the SGX program execution from being leaked by access pattern-based and timing-based channels. We also provide a detailed performance benchmark results in order to show the practical aspects of OBFUSCURO.", changed markeddown_description from "<p>Program obfuscation is a popular cryptographic\nconstruct with a wide range of uses such as IP theft prevention. Although\ncryptographic solutions for program obfuscation impose\nimpractically high overheads, a recent breakthrough leveraging\ntrusted hardware has shown promise. However, the existing\nsolution is based on special-purpose trusted hardware, restricting\nits use-cases to a limited few.</p>\n<p>In this paper, we first study if such obfuscation is feasible\nbased on commodity trusted hardware, Intel SGX, and we\nobserve that certain important security considerations are not\nafforded by commodity hardware. In particular, we found that\nexisting obfuscation/obliviousness schemes are insecure if directly\napplied to Intel SGX primarily due to side-channel limitations.\nTo this end, we present OBFUSCURO, the first system providing\nprogram obfuscation using commodity trusted hardware, Intel\nSGX. The key idea is to leverage ORAM operations to perform\nsecure code execution and data access. Initially, OBFUSCURO\ntransforms the regular program layout into a side-channel-secure\nand ORAM-compatible layout. Then, OBFUSCURO ensures\nthat its ORAM controller performs data oblivious accesses in\norder to protect itself from all memory-based side-channels.\nFurthermore, OBFUSCURO ensures that the program is secure\nfrom timing attacks by ensuring that the program always runs\nfor a pre-configured time interval. Along the way, OBFUSCURO\nalso introduces a systematic optimization such as register-based\nORAM stash. We provide a thorough security analysis of\nOBFUSCURO along with empirical attack evaluations showing\nthat OBFUSCURO can protect the SGX program execution from\nbeing leaked by access pattern-based and timing-based channels.\nWe also provide a detailed performance benchmark results in\norder to show the practical aspects of OBFUSCURO.</p>\n" to "<p>Program obfuscation is a popular cryptographic construct with a wide range of uses such as IP theft prevention. Although cryptographic solutions for program obfuscation impose impractically high overheads, a recent breakthrough leveraging trusted hardware has shown promise. However, the existing solution is based on special-purpose trusted hardware, restricting its use-cases to a limited few.</p>\n<p>In this paper, we first study if such obfuscation is feasible based on commodity trusted hardware, Intel SGX, and we observe that certain important security considerations are not afforded by commodity hardware. In particular, we found that existing obfuscation/obliviousness schemes are insecure if directly applied to Intel SGX primarily due to side-channel limitations. To this end, we present OBFUSCURO, the first system providing program obfuscation using commodity trusted hardware, Intel SGX. The key idea is to leverage ORAM operations to perform secure code execution and data access. Initially, OBFUSCURO transforms the regular program layout into a side-channel-secure and ORAM-compatible layout. Then, OBFUSCURO ensures that its ORAM controller performs data oblivious accesses in order to protect itself from all memory-based side-channels. Furthermore, OBFUSCURO ensures that the program is secure from timing attacks by ensuring that the program always runs for a pre-configured time interval. Along the way, OBFUSCURO also introduces a systematic optimization such as register-based ORAM stash. We provide a thorough security analysis of OBFUSCURO along with empirical attack evaluations showing that OBFUSCURO can protect the SGX program execution from being leaked by access pattern-based and timing-based channels. We also provide a detailed performance benchmark results in order to show the practical aspects of OBFUSCURO.</p>\n"
Reason: Changing the spacing in the Abstract
2019-04-03 14:09 -0500 mgreen Tag: ProofOfWork
Action: Updating tag ProofOfWork, changed id from '' to '66', changed tag from '' to 'ProofOfWork', changed description from '' to ''
2019-04-03 14:07 -0500 mgreen Tag: PaymentChannels
Action: Updating tag PaymentChannels, changed id from '' to '65', changed tag from '' to 'PaymentChannels', changed description from '' to ''
2019-04-03 13:42 -0500 mgreen Tag: FPE
Action: Updating tag FPE, changed id from '' to '64', changed tag from '' to 'FPE', changed description from '' to ''
2019-04-03 13:37 -0500 mgreen Tag: CellularProtocols
Action: Updating tag CellularProtocols, changed id from '' to '63', changed tag from '' to 'CellularProtocols', changed description from '' to ''
2019-04-03 13:36 -0500 mgreen Tag: 5G
Action: Updating tag 5G, changed id from '' to '62', changed tag from '' to '5G', changed description from '' to ''
2019-04-03 13:33 -0500 mgreen Tag: AnonymousCredentials
Action: Updating tag AnonymousCredentials, changed id from '' to '61', changed tag from '' to 'AnonymousCredentials', changed description from '' to ''
2019-04-03 13:25 -0500 gkaptchuk Tag: RO
Action: Updating tag RO, changed tag from 'Zcash' to 'RO'
2019-04-03 13:25 -0500 gkaptchuk Tag: zkSNARK
Action: Updating tag zkSNARK, changed tag from 'zkSNARKs' to 'zkSNARK'
2019-04-03 13:24 -0500 mgreen Tag: Censorship
Action: Updating tag Censorship, changed id from '' to '60', changed tag from '' to 'Censorship', changed description from '' to ''
2019-04-03 13:23 -0500 gkaptchuk Tag: TEE
Action: Updating tag TEE, changed tag from 'TEEs' to 'TEE'
2019-04-03 13:21 -0500 mgreen Tag: RO
Action: Updating tag Zcash, changed id from '' to '59', changed tag from '' to 'Zcash', changed description from '' to ''
2019-04-03 13:21 -0500 mgreen Tag: Monero
Action: Updating tag Monero, changed id from '' to '58', changed tag from '' to 'Monero', changed description from '' to ''
2019-04-03 13:20 -0500 mgreen Tag: Bitcoin
Action: Updating tag Bitcoin, changed id from '' to '57', changed tag from '' to 'Bitcoin', changed description from '' to ''
2019-04-02 15:14 -0500 mgreen Tag: Genomics
Action: Updating tag Genomics, changed id from '' to '56', changed tag from '' to 'Genomics', changed description from '' to ''
2019-04-02 15:13 -0500 mgreen Tag: DataAnalysis
Action: Updating tag DataAnalysis, changed id from '' to '55', changed tag from '' to 'DataAnalysis', changed description from '' to ''
2019-04-02 14:58 -0500 gkaptchuk Tag: RemoteAttestation
Action: Updating tag RemoteAttestation, changed id from '' to '54', changed tag from '' to 'RemoteAttestation', changed description from '' to ''
2019-04-02 14:53 -0500 gkaptchuk Tag: UC
Action: Updating tag UC, changed id from '' to '53', changed tag from '' to 'UC', changed description from '' to ''
2019-04-02 14:40 -0500 mgreen Tag: Lattices
Action: Updating tag Lattices, changed id from '' to '52', changed tag from '' to 'Lattices', changed description from '' to ''
2019-04-02 14:33 -0500 mgreen Tag: Android
Action: Updating tag Android, changed id from '' to '51', changed tag from '' to 'Android', changed description from '' to ''
2019-04-02 14:33 -0500 mgreen Tag: Implementation
Action: Updating tag Implementation, changed id from '' to '50', changed tag from '' to 'Implementation', changed description from '' to ''
2019-04-02 14:31 -0500 gkaptchuk Tag: MachineLearning
Action: Updating tag MachineLearning, changed id from '' to '49', changed tag from '' to 'MachineLearning', changed description from '' to ''
2019-04-02 14:24 -0500 mgreen Tag: Measurement
Action: Updating tag Measurement, changed id from '' to '48', changed tag from '' to 'Measurement', changed description from '' to ''
2019-04-02 14:24 -0500 gkaptchuk Tag: Consensus
Action: Updating tag Consensus, changed tag from 'consensus' to 'Consensus'
2019-04-02 14:23 -0500 gkaptchuk Tag: Attacks
Action: Updating tag Attacks, changed tag from 'attacks' to 'Attacks'
2019-04-02 14:23 -0500 gkaptchuk Tag: Passwords
Action: Updating tag Passwords, changed tag from 'passwords' to 'Passwords'
2019-04-02 14:23 -0500 gkaptchuk Tag: FormalVerification
Action: Updating tag FormalVerification, changed id from '' to '47', changed tag from '' to 'FormalVerification', changed description from '' to ''
2019-04-02 14:17 -0500 mgreen Tag: SearchableEncryption
Action: Updating tag SearchableEncryption, changed id from '' to '46', changed tag from '' to 'SearchableEncryption', changed description from '' to ''