Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Evaluation of Using Secure Enclaves in Virtualized Radio Environments
Linköping University, Department of Computer and Information Science, Database and information techniques.
2019 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Virtual Network Functions (VNFs) are software applications that process network packets in virtualized environments such as clouds. Using VNFs to process network traffic inside a cloud, which could be controlled by a third-party, exposes the secrets that are stored within the VNFs to a significant amount of threats. Trusted Execution Environments (TEEs) are hardware technologies dedicated to protect software from other malicious applications and users. Open Enclave and Asylo are two SDKs that decouple software and hardware and enable developers to build applications that utilize TEEs without creating hardware dependencies. Open Enclave and Asylo are still in an early stage of development, Asylo in particular. The impact of integrating Open Enclave and Asylo to VNFs from a security and performance perspective was addressed by performing a risk assessment and running performance experiments. The identified vulnerabilities in VNFs were mitigated by using available security properties from TEEs. The results show that protecting VNFs with Open Enclave and Asylo mitigate a significant amount of threats. However, the VNFs suffer from a performance penalty when using TEEs, and are still vulnerable to side-channel and Denial-of-Service attacks.

Place, publisher, year, edition, pages
2019. , p. 62
Keywords [en]
Enclave, Open Enclave, Asylo, VNF
National Category
Computer Engineering
Identifiers
URN: urn:nbn:se:liu:diva-159768ISRN: LIU-IDA/LITH-EX-A--19/035--SEOAI: oai:DiVA.org:liu-159768DiVA, id: diva2:1344436
External cooperation
Ericsson AB
Subject / course
Computer Engineering
Supervisors
Examiners
Available from: 2019-08-22 Created: 2019-08-20 Last updated: 2019-08-22Bibliographically approved

Open Access in DiVA

fulltext(1027 kB)28 downloads
File information
File name FULLTEXT01.pdfFile size 1027 kBChecksum SHA-512
ddb3363f775fa583b87557fc8dbb8ddf99cf185cf0012ed114dc4e7292a7d72b583923e1f5b27ba12b6e489b6dbf96a6fccbb38b3a9d9926d5eb7b58bbb2bd56
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Norberg, Emil
By organisation
Database and information techniques
Computer Engineering

Search outside of DiVA

GoogleGoogle Scholar
Total: 28 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 163 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf