dc.citation.conferencePlace |
US |
- |
dc.citation.endPage |
248 |
- |
dc.citation.startPage |
233 |
- |
dc.citation.title |
ACM Symposium on Cloud Computing |
- |
dc.contributor.author |
You, Junseung |
- |
dc.contributor.author |
Lee, Kyeongryong |
- |
dc.contributor.author |
Moon, Hyungon |
- |
dc.contributor.author |
Cho, Yeongpil |
- |
dc.contributor.author |
Paek, Yunheung |
- |
dc.date.accessioned |
2023-12-19T15:45:10Z |
- |
dc.date.available |
2023-12-19T15:45:10Z |
- |
dc.date.created |
2023-12-19 |
- |
dc.date.issued |
2023-10-30 |
- |
dc.description.abstract |
AMD’s Secure Encrypted Virtualization (SEV) is a hardware-based Trusted Execution Environment (TEE) designed to secure tenants’ data on the cloud, even against insider threats. The latest version of SEV, SEV-Secure Nested Paging (SEV-SNP), offers protection against most well-known attacks such as cold boot and hypervisor-based attacks. However, it remains susceptible to a specific type of attack known as Active DRAM Corruption (ADC), where attackers manipulate memory content using specially crafted memory devices. The in-memory key-value store (KVS) on SEV is a prime target for ADC attacks due to its critical role in cloud infrastructure and the predictability of its data structures. To counter this threat, we propose KVSEV, an in-memory KVS resilient to ADC attacks. KVSEV leverages SNP’s Virtual Machine Management (VMM) and attestation mechanism to protect the integrity of key-value pairs, thereby securing the KVS from ADC attacks. Our evaluation shows that KVSEV secures in-memory KVSs on SEV with a performance overhead comparable to other secure in-memory KVS solutions. |
- |
dc.identifier.bibliographicCitation |
ACM Symposium on Cloud Computing, pp.233 - 248 |
- |
dc.identifier.doi |
10.1145/3620678.3624658 |
- |
dc.identifier.uri |
https://scholarworks.unist.ac.kr/handle/201301/66442 |
- |
dc.language |
영어 |
- |
dc.publisher |
Association for Computing Machinery, Inc |
- |
dc.title |
KVSEV: A Secure In-Memory Key-Value Store with Secure Encrypted Virtualization |
- |
dc.type |
Conference Paper |
- |
dc.date.conferenceDate |
2023-10-30 |
- |