TEE Systems

Security-enhanced network system by leveraging trusted execution environment (TEE)

SGX-Tor Code

TEE-based Network System Security.

Summary

Many network service providers concern about preserving their user’s privacy located in an untrusted third-party (e.g., cloud platform). To overcome the security issue, our several research projects explore new network system designs that achieve enhanced security properties by leveraging trusted execution environment (TEE) technology such as Intel SGX. Especially, we propose new design and implementation of a Tor anonymity network, a network middlebox, and HSM-based key management systems.

Publications

  1. ToN
    A Secure Middlebox Framework for Enabling Visibility Over Multiple Encryption Protocols
    Juhyeng HanSeongmin KimDaeyang ChoByungkwon Choi, Jaehyeong Ha, and Dongsu Han
    IEEE/ACM Transactions on Networking 2020
    Paper Project
  2. APNet
    SGX-Box: Enabling Visibility on Encrypted Traffic Using a Secure Middlebox Module
    Juhyeng HanSeongmin Kim, Jaehyeong Ha, and Dongsu Han
    In Proceedings of the First Asia-Pacific Workshop on Networking 2017
    Paper Project
  3. NSDI
    Enhancing Security and Privacy of Tor’s Ecosystem by Using Trusted Execution Environments
    Seongmin KimJuhyeng Han, Jaehyeong Ha, Taesoo Kim, and Dongsu Han
    In 14th USENIX Symposium on Networked Systems Design and Implementation (NSDI 17) Mar 2017
    Paper Project
  4. HotNets
    A First Step Towards Leveraging Commodity Trusted Execution Environments for Network Applications
    Seongmin Kim, Youjung Shin, Jaehyung Ha, Taesoo Kim, and Dongsu Han
    In Proceedings of the 14th ACM Workshop on Hot Topics in Networks Mar 2015
    Paper Project
  5. SysTEX
    Toward scaling hardware security module for emerging cloud services
    Juhyeng HanSeongmin Kim, Taesoo Kim, and Dongsu Han
    In Proceedings of the 4th Workshop on System Software for Trusted Execution Mar 2019
    Paper Project
  6. ToN
    Sgx-Tor: A secure and practical tor anonymity network with sgx enclaves
    Seongmin KimJuhyeng Han, Jaehyeong Ha, Taesoo Kim, and Dongsu Han
    IEEE/ACM Transactions on Networking Mar 2018
    Paper Project
  7. ToN
    Scalable and Secure Virtualization of HSM with ScaleTrust
    Juhyeng Han, Insu Yun, Seongmin Kim, Taesoo Kim, Sooel Son, and Dongsu Han
    IEEE/ACM Transactions on Networking Nov 2022
    Paper Project

Members

JuhyengHan
Juhyeng Han

Alumni
SeongminKim
Seongmin Kim

Alumni
DaeyangCho
Daeyang Cho

Alumni
DongsuHan
Dongsu Han

Principal Investigator