Sun 14 Apr 2019 10:25 - 10:50 at Garden Room - Session1

Recent research utilizing Secure Virtual Architecture (SVA) has demonstrated that compiler-based virtual machines can protect applications from side-channel attacks launched by compromised operating system kernels. However, SVA provides no instructions for using hardware virtualization features such as Intel's Virtual Machine Extensions (VMX) and AMD's Secure Virtual Machine (SVM). Consequently, operating systems running on top of SVA cannot run guest operating systems using features such as Linux's Kernel Virtual Machine (KVM) and FreeBSD's bhyve.

This paper presents a set of new SVA instructions that allow an operating system kernel to configure and use the Intel VMX hardware features. Additionally, we use these new instructions to create \emph{Shade}. Shade extends Apparition (an SVA-based system) to ensure that a compromised host operating system cannot use the new VMX virtual instructions to attack host applications (either directly or via page-fault and last-level-cache side-channel attacks).

Sun 14 Apr
Times are displayed in time zone: (GMT-04:00) Eastern Time (US & Canada) change

10:00 - 12:05: Research Papers - Session1 at Garden Room
vee-2019-papers10:00 - 10:25
Wenhao LiShanghai Jiao Tong University, China, Yubin XiaShanghai Jiao Tong University, China, Long LuNortheastern University, n.n., Haibo ChenShanghai Jiao Tong University, China, Binyu ZangShanghai Jiao Tong University, China
vee-2019-papers10:25 - 10:50
Ethan JohnsonUniversity of Rochester, USA, Komail DharseeUniversity of Rochester, USA, John CriswellUniversity of Rochester, USA
vee-2019-papers10:50 - 11:15
Hao Li , Xuefei XuIntel, China, Jinkui RenIntel, China, Yaozu DongIntel, China
vee-2019-papers11:15 - 11:40
Spoorti DoddamaniBinghamton University, USA, Piush Kumar SinhaBinghamton University, USA, Hui LuBinghamton University, USA, Tsu-Hsiang K. ChengBinghamton University, USA, Hardik H. BagdiBinghamton University, USA, Kartik GopalanBinghamton University, USA
vee-2019-papers11:40 - 12:05
Pierre OlivierVirginia Tech, USA, Daniel ChibaVirginia Tech, USA, Stefan LankesRWTH Aachen University, Germany, Changwoo MinVirginia Tech, USA, Binoy RavindranVirginia Tech, USA