acctee a webassembly based two way sandbox for trusted r
play

AccTEE: A WebAssembly-based Two-way Sandbox for Trusted R esource - PowerPoint PPT Presentation

Feb 22, 2024 •131 likes •502 views

AccTEE: A WebAssembly-based Two-way Sandbox for Trusted R esource Accounting MIDDLEWARE 2019 , UC Davis David Goltzsche, 1 Manuel Nieke, 1 Thomas Knauth, 2 and Rdiger Kapitza 1 goltzsche@ibr.cs.tu-bs.de @d_goltzsche 1 TU Braunschweig, Germany 2

  1. AccTEE: A WebAssembly-based Two-way Sandbox for Trusted R esource Accounting MIDDLEWARE 2019 , UC Davis David Goltzsche, 1 Manuel Nieke, 1 Thomas Knauth, 2 and Rüdiger Kapitza 1 goltzsche@ibr.cs.tu-bs.de @d_goltzsche 1 TU Braunschweig, Germany 2 Intel, United States

  2. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Offloading Computations Offloading computations to remote infrastructure Cloud Computing Volunteer Computing Client-side Web applications Reasons: Remotely available resources Moving computations closer to customers Usually two entities: Workload provider I nfrastructure provider 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 2

  3. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Offloading Computations Offloading computations to remote infrastructure Cloud Computing Volunteer Computing Client-side Web applications Reasons: Remotely available resources Moving computations closer to customers Usually two entities: Workload provider I nfrastructure provider 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 2

  4. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Offloading Computations Offloading computations to remote infrastructure Cloud Computing Volunteer Computing Client-side Web applications Reasons: Remotely available resources Moving computations closer to customers Usually two entities: Workload provider I nfrastructure provider Accounting of consumed resources in some cases 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 2

  5. Design of AccTEE Evaluation of AccTEE Related Work Conclusion R esource Accounting Cloud Computing CPU and memory usage, I/O operations Volunteer Computing Logging of donated CPU time Client-side Web applications No accounting in practice 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 3

  6. Design of AccTEE Evaluation of AccTEE Related Work Conclusion R esource Accounting in Practice Accounting on different levels Task level (e.g. for completed tasks) Hardware level (e.g. CPU usage) Resources always accounted by infrastructure provider 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 4

  7. Design of AccTEE Evaluation of AccTEE Related Work Conclusion R esource Accounting in Practice Accounting on different levels Task level (e.g. for completed tasks) Hardware level (e.g. CPU usage) Resources always accounted by infrastructure provider Current approaches of resource accounting require trust in the infrastructure provider 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 4

  8. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Trust Relationship Malicious infrastructure provider can … Spy on provided code or data Fake accounting results (overbilling) Malicious workload provider can … Provide crafted workload to destroy execution environment Trick resource accounting 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 5

  9. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Trust Relationship Malicious infrastructure provider can … Spy on provided code or data Fake accounting results (overbilling) Malicious workload provider can … Provide crafted workload to destroy execution environment Trick resource accounting Problem: Limited trust between infrastructure and workload provider 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 5

  10. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Outline Design of AccTEE Evaluation of AccTEE Related Work Conclusion 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 6

  11. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Approach of AccTEE workload provider infrastructure provider 1. Workload provider provides workload 2. Infrastructure provider executes workload in sandbox 3. Sandbox produces mutually trusted resource usage log 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 7

  12. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Approach of AccTEE provides workload workload provider infrastructure provider 1. Workload provider provides workload 2. Infrastructure provider executes workload in sandbox 3. Sandbox produces mutually trusted resource usage log 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 7

  13. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Approach of AccTEE provides workload sandbox workload provider infrastructure provider 1. Workload provider provides workload 2. Infrastructure provider executes workload in sandbox 3. Sandbox produces mutually trusted resource usage log 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 7

  14. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Approach of AccTEE provides workload sandbox produces workload log provider resource infrastructure usage log provider 1. Workload provider provides workload 2. Infrastructure provider executes workload in sandbox 3. Sandbox produces mutually trusted resource usage log 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 7

  15. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Approach of AccTEE provides workload sandbox produces workload log provider resource infrastructure usage log provider 1. Workload provider provides workload 2. Infrastructure provider executes workload in sandbox 3. Sandbox produces mutually trusted resource usage log How do we get an sandbox with mutually trusted resource accounting ? 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 7

  16. Design of AccTEE Evaluation of AccTEE Related Work Conclusion AccTEE’s Sandbox Accountable sandbox is a combination of two sandboxes untrusted host workload Execution sandbox Shields host from workload execution sandbox Shields accounting from workload accounting sandbox Accounting sandbox Shields workload from host Shields accounting from host 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 8

  17. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Background: WebAssembly (WASM) A platform independent binary instruction format Initially designed for computations in browsers Standalone execution emerging Goal: a safe, fast and portable low-level code Application code is compiled to WASM WebAssembly code executed in sandboxes Based on software fault isolation 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 9

  18. Design of AccTEE Evaluation of AccTEE Related Work Conclusion Background: Intel SGX x86 instruction set extension Creation of trusted execution environments (TEEs) → enclaves application Execution and data inside enclaves enclave protected from privileged software operating system Hardware-based memory integrity protection and encryption hardware CPU Only CPU is trusted Remote attestation of enclaves Limitation: enclave page cache (EPC) size 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 10

  19. Design of AccTEE Evaluation of AccTEE Related Work Conclusion AccTEE’s Two-way Sandbox AccTEE combines two sandboxes Execution sandbox Based on WebAssembly Accounting sandbox Based on Intel SGX Code instrumentation for resource accounting 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 11

  20. Design of AccTEE Evaluation of AccTEE Related Work Conclusion AccTEE’s Two-way Sandbox AccTEE combines two sandboxes Execution sandbox Based on WebAssembly Accounting sandbox Based on Intel SGX Code instrumentation for resource accounting AccTEE combines SGX and WebAssembly to create a two-way sandbox 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 11

  21. Design of AccTEE Evaluation of AccTEE Related Work Conclusion AccTEE’s Two-way Sandbox AccTEE combines two sandboxes Execution sandbox Based on WebAssembly Accounting sandbox Based on Intel SGX Code instrumentation for resource accounting AccTEE combines SGX and WebAssembly to create a two-way sandbox AccTEE instruments WebAssembly code for mutually trusted resource accounting 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 11

  22. Design of AccTEE Evaluation of AccTEE Related Work Conclusion WebAssembly Code Instrumentation Goal: Count WebAssembly instructions get_global 12 naive instrumentation set_local 3 Based on basic blocks i32.lt_s Counter incremented at end of block i f ( r e s u l t i32 ) get_local 0 flow-based optimization i32.load offset=4 Increment by minimum instruction count e l s e Update counter based on control flow get_local 4 i32.const 255 loop-based optimization i32.and Identify loop iterators with constant increments end Increment counter once after loop tee_local 4 get_local 1 Different instruction costs AccTEE uses a weighted instruction counter 2019-12-11 D. Goltzsche, TU Braunschweig, Germany AccTEE , D. Goltzsche et al. Page 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

WEBPACK + WEBASSEMBLY W E B A S S E M B L Y W E B P A C K A N D T H E C H A L L E N G E O F

WEBPACK + WEBASSEMBLY W E B A S S E M B L Y W E B P A C K A N D T H E C H A L L E N G E O F

WEBPACK + WEBASSEMBLY W E B A S S E M B L Y W E B P A C K A N D T H E C H A L L E N G E O F INTRODUCTION WEBASSEMBLY AND ESM WEBASSEMBLY? L OW -L EVEL B INARY F ORMAT FOR C ODE T YPED ( I 8 I 64, F 32, F 64) M EMORY U

657 views • 39 slides
CS/COE 1520 pitt.edu/~ach54/cs1520 WebAssembly WebAssembly WebAssembly is a low-level

CS/COE 1520 pitt.edu/~ach54/cs1520 WebAssembly WebAssembly WebAssembly is a low-level

CS/COE 1520 pitt.edu/~ach54/cs1520 WebAssembly WebAssembly WebAssembly is a low-level language that runs within the web browser with near-native performance for those tasks that demand that level of performance Eg. Augmented/Virtual

312 views • 14 slides
WebAssembly: Status & Web IDL Bindings W3C Games Workshop - June, 2019 Luke Wagner Based on

WebAssembly: Status & Web IDL Bindings W3C Games Workshop - June, 2019 Luke Wagner Based on

WebAssembly: Status & Web IDL Bindings W3C Games Workshop - June, 2019 Luke Wagner Based on joint Mozilla/Google presentation to WebAssembly CG last week (link) WebAssembly Status 2017: "MVP" ships in 4 browsers \o/

425 views • 14 slides
WebAssembly WebAssembly Here Be Dragons JF Bastien Dan Gohman Google Mozilla @jfbastien

WebAssembly WebAssembly Here Be Dragons JF Bastien Dan Gohman Google Mozilla @jfbastien

WebAssembly WebAssembly Here Be Dragons JF Bastien Dan Gohman Google Mozilla @jfbastien @sunfishcode Presentation given at the 2015 LLVM Developers Meeting on October 29th in San Jose, California. JF narrates: WebAssembly is a tale

654 views • 17 slides
Build your own WebAssembly Compiler Colin Eberhardt, Scott Logic Why do we need WebAssembly?

Build your own WebAssembly Compiler Colin Eberhardt, Scott Logic Why do we need WebAssembly?

Build your own WebAssembly Compiler Colin Eberhardt, Scott Logic Why do we need WebAssembly? JavaScript is a compilation target > WebAssembly or wasm is a new portable, size- and load-time-efficient format suitable for compilation to the

800 views • 62 slides
WebAssembly neither Web nor Assembly, but Revolutionary Jay Phelps | @_jayphelps The WebAssembly

WebAssembly neither Web nor Assembly, but Revolutionary Jay Phelps | @_jayphelps The WebAssembly

WebAssembly neither Web nor Assembly, but Revolutionary Jay Phelps | @_jayphelps The WebAssembly revolution has begun Jay Phelps | @_jayphelps Jay Phelps Chief Software Architect | previously @_jayphelps Support, Dev Rel, Staff Augmentation,

1.33k views • 130 slides
Lets embrace WebAssembly! Lets embrace WebAssembly! EuroPython 2018 - Edinburgh Almar

Lets embrace WebAssembly! Lets embrace WebAssembly! EuroPython 2018 - Edinburgh Almar

Lets embrace WebAssembly! Lets embrace WebAssembly! EuroPython 2018 - Edinburgh Almar Klein What is WebAssembly? What is WebAssembly? WebAssembly == WASM WASM is an OPEN standard ... WASM is an OPEN standard ... Collaborative effort

827 views • 43 slides
Build your own WebAssembly Compiler Colin Eberhardt, Scott Logic https://wasmweekly.news/ Why

Build your own WebAssembly Compiler Colin Eberhardt, Scott Logic https://wasmweekly.news/ Why

Build your own WebAssembly Compiler Colin Eberhardt, Scott Logic https://wasmweekly.news/ Why do we need WebAssembly? JavaScript is a compilation target > WebAssembly or wasm is a new portable, size- and load-time-efficient format

658 views • 62 slides
TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution

TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution

TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution Environments Gui Andrade Krste Asanovi Dayeol Lee David Kohlbrenner Dawn Song University of California, Berkeley TRUSTED MEMORY? Securing data/code

703 views • 48 slides
WebAssembly: Mechanisation, Security, and Concurrency Conrad Watt University of Cambridge

WebAssembly: Mechanisation, Security, and Concurrency Conrad Watt University of Cambridge

WebAssembly: Mechanisation, Security, and Concurrency Conrad Watt University of Cambridge Verified Software Workshop 2019 Conrad Watt (Cambridge) Formal WebAssembly 1 / 24 A brief history of WebAssembly (Wasm) A low-level bytecode,

868 views • 24 slides
Level up with WebAssembly OSCON 2019 Robert Aboukhalil @RobAboukhalil What is WebAssembly?

Level up with WebAssembly OSCON 2019 Robert Aboukhalil @RobAboukhalil What is WebAssembly?

Level up with WebAssembly OSCON 2019 Robert Aboukhalil @RobAboukhalil What is WebAssembly? What is WebAssembly? JavaScript WebAssembly char char * hello() { ( module module return return "Hello OSCON 2019!"; ( table table 0

667 views • 29 slides
Welcome! What Is an AR Sandbox? (and how to build one) An Augmented Reality Sandbox Is: a

Welcome! What Is an AR Sandbox? (and how to build one) An Augmented Reality Sandbox Is: a

Welcome! What Is an AR Sandbox? (and how to build one) An Augmented Reality Sandbox Is: a box filled with white sand a projector mounted over the sand a Kinect depth-sensing camera mounted over the sand a computer that runs

491 views • 11 slides
Revolution has begun Jay Phelps | @_jayphelps WebAssembly will change the way we think of

Revolution has begun Jay Phelps | @_jayphelps WebAssembly will change the way we think of

The WebAssembly Revolution has begun Jay Phelps | @_jayphelps WebAssembly will change the way we think of "web apps" Jay Phelps | @_jayphelps Jay Phelps Senior Software Engineer | @_jayphelps So... what is WebAssembly? aka wasm Jay

1.48k views • 103 slides
frameworks using WebAssembly Boyan Mihaylov @boyanio boyan.io WebAssembly ( WASM ) is compiler

frameworks using WebAssembly Boyan Mihaylov @boyanio boyan.io WebAssembly ( WASM ) is compiler

The rise of non-JavaScript frameworks using WebAssembly Boyan Mihaylov @boyanio boyan.io WebAssembly ( WASM ) is compiler target for programs on the Web @boyanio @boyanio https://vimeo.com/272924131 The Web of JavaScript frameworks

588 views • 29 slides
secmodel_sandbox An application sandbox for NetBSD Stephen Herwig sandboxing Sandboxing:

secmodel_sandbox An application sandbox for NetBSD Stephen Herwig sandboxing Sandboxing:

secmodel_sandbox An application sandbox for NetBSD Stephen Herwig sandboxing Sandboxing: limiting the privileges of a process Two motivations - Running untrusted code in a restricted environment - Dropping privileges in trusted code so as to

1.09k views • 58 slides
Web Evolution and WebAssembly David Herrera Contents Limitations of JavaScript

Web Evolution and WebAssembly David Herrera Contents Limitations of JavaScript

Web Evolution and WebAssembly David Herrera Contents Limitations of JavaScript Evolution of Web performance via asm.js WebAssembly Design Pipeline Decoding Validation Execution Examples

1.93k views • 67 slides
Ken Birman i Cornell University. CS5410 Fall 2008. Mission Impossible Today, multicast is

Ken Birman i Cornell University. CS5410 Fall 2008. Mission Impossible Today, multicast is

Ken Birman i Cornell University. CS5410 Fall 2008. Mission Impossible Today, multicast is persona non grata in most cloud settings Amazons stories of their experience with violent load A i f h i i i h i l l d oscillations

759 views • 43 slides
FROM BETTING TO GAMING TO TRADEFAIR TO TRADEFAIR

FROM BETTING TO GAMING TO TRADEFAIR TO TRADEFAIR

FROM BETTING TO GAMING TO TRADEFAIR TO TRADEFAIR !"##$#$% &#'$(

895 views • 63 slides
Introduction to Wireless Sensor Networks Marco Zennaro and Antoine Bagula ICTP and UWC Italy

Introduction to Wireless Sensor Networks Marco Zennaro and Antoine Bagula ICTP and UWC Italy

Introduction to Wireless Sensor Networks Marco Zennaro and Antoine Bagula ICTP and UWC Italy and South Africa Infrastructure-based networks Typical wireless network: Based on infrastructure (E.g., GSM, UMTS, WiFi, ) Base stations

846 views • 48 slides
TITLE It depends on what you mean by title p y y 2 WOULD YOU RUN WINDOWS ON YOUR

TITLE It depends on what you mean by title p y y 2 WOULD YOU RUN WINDOWS ON YOUR

TITLE It depends on what you mean by title p y y 2 WOULD YOU RUN WINDOWS ON YOUR GRANDMOTHERS PACEMAKER? Andrew S. Tanenbaum Vrije Universiteit Amsterdam 3 LINUX IS STILL OBSOLETE Andrew S. Tanenbaum Vrije Universiteit

1.29k views • 83 slides
1 Distribution of work: new functionality Distribution of work: fixes 7 8 Who reports

1 Distribution of work: new functionality Distribution of work: fixes 7 8 Who reports

The case for open source software Open Source Software Why Open Source Software / Free The process, the outcome Software (OSS/FS)? Look at the Numbers! David A. Wheeler The heat, the light Revised as of September 30 2004

464 views • 9 slides
CS378 - Mobile Computing Web - WebView and Web Services WebView A View that display web pages

CS378 - Mobile Computing Web - WebView and Web Services WebView A View that display web pages

CS378 - Mobile Computing Web - WebView and Web Services WebView A View that display web pages basis for creating your own web browser OR just display some online content inside of your Activity Uses WebKit rendering engine

383 views • 37 slides
Heat (and hexagon) plots in Stata Ben Jann University of Bern, ben.jann@soz.unibe.ch 2019 German

Heat (and hexagon) plots in Stata Ben Jann University of Bern, ben.jann@soz.unibe.ch 2019 German

Heat (and hexagon) plots in Stata Ben Jann University of Bern, ben.jann@soz.unibe.ch 2019 German Stata Users Group meeting Munich, May 24, 2019 Ben Jann (University of Bern) heatplot Munich, 24.05.2019 1 Outline Introduction 1 Syntax of

447 views • 40 slides
Heat Transfer in Dielectric Mirrors J. A. del R o, D. Estrada, F. V azquez August 21,

Heat Transfer in Dielectric Mirrors J. A. del R o, D. Estrada, F. V azquez August 21,

Introduction Model Experiments set up Results Conclusions Heat Transfer in Dielectric Mirrors J. A. del R o, D. Estrada, F. V azquez August 21, 2012 Introduction Model Experiments set up Results Conclusions 1 Introduction

301 views • 29 slides

More recommend