TEE Systems

Security-enhanced network system by leveraging trusted execution environment (TEE)

SGX-Tor Code

TEE-based Network System Security.

Summary

Many network service providers concern about preserving their user’s privacy located in an untrusted third-party (e.g., cloud platform). To overcome the security issue, our several research projects explore new network system designs that achieve enhanced security properties by leveraging trusted execution environment (TEE) technology such as Intel SGX. Especially, we propose new design and implementation of a Tor anonymity network, a network middlebox, and HSM-based key management systems.

Publications

  1. ToN
    A Secure Middlebox Framework for Enabling Visibility Over Multiple Encryption Protocols
    IEEE/ACM Transactions on Networking 2020
  2. APNet
    SGX-Box: Enabling Visibility on Encrypted Traffic Using a Secure Middlebox Module
    Juhyeng HanSeongmin Kim, Jaehyeong Ha, and Dongsu Han
    In Proceedings of the First Asia-Pacific Workshop on Networking 2017
  3. NSDI
    Enhancing Security and Privacy of Tor’s Ecosystem by Using Trusted Execution Environments
    Seongmin KimJuhyeng Han, Jaehyeong Ha, Taesoo Kim, and Dongsu Han
    In 14th USENIX Symposium on Networked Systems Design and Implementation (NSDI 17) Mar 2017
  4. HotNets
    A First Step Towards Leveraging Commodity Trusted Execution Environments for Network Applications
    Seongmin Kim, Youjung Shin, Jaehyung Ha, Taesoo Kim, and Dongsu Han
    In Proceedings of the 14th ACM Workshop on Hot Topics in Networks Mar 2015
  5. SysTEX
    Toward scaling hardware security module for emerging cloud services
    Juhyeng HanSeongmin Kim, Taesoo Kim, and Dongsu Han
    In Proceedings of the 4th Workshop on System Software for Trusted Execution Mar 2019
  6. ToN
    Sgx-Tor: A secure and practical tor anonymity network with sgx enclaves
    Seongmin KimJuhyeng Han, Jaehyeong Ha, Taesoo Kim, and Dongsu Han
    IEEE/ACM Transactions on Networking Mar 2018
  7. ToN
    Scalable and Secure Virtualization of HSM with ScaleTrust
    Juhyeng Han, Insu Yun, Seongmin Kim, Taesoo Kim, Sooel Son, and Dongsu Han
    IEEE/ACM Transactions on Networking (To appear) Dec 2022

Members