Thesis Abstract | Hossam ElAtali

The increasing complexity of modern computing systems and their exposure to the world-wide web expose sensitive data to a range of security threats from remote adversaries. Bugs in software can lead to run-time attacks that gain direct access to sensitive data in memory. Furthermore, hardware and/or compiler optimizations can expose sensitive data to side-channel leakage, even in the absence of software bugs.

As business needs evolve, different usage scenarios, such as outsourced computation, have gained popularity, making the task of protecting data confidentiality more complex. This dissertation investigates how confidentiality of sensitive data at run-time can be efficiently preserved through hardware-assisted mechanisms. I consider a range of usage scenarios and threat models, from protecting data sent to remote servers for outsourced computation by untrusted code, to protecting data processed locally from other vulnerable or malicious parts of the system.

Specifically, this dissertation addresses: 1) (how) can we protect sensitive data sent to a remote server for outsourced computation efficiently? I tackle this by proposing BliMe, a novel architecture that relies on remote attestation and hardware-enforced data obliviousness to protect data processed by untrusted code, both from direct access and side-channel leakage. Next, I address the two following questions: 2) how to protect data from untrusted code in a local setting, for which I propose PBI, a novel hardware memory safety primitive that can be used to implement efficient and secure sandboxing and in-process isolation, and 3) how to reduce the overhead of side-channel protection to near-zero, for which I propose CacheSquash, a software-transparent hardware mechanism to effectively harden against transient attacks such as Spectre and Meltdown. 4) Finally, I address how to efficiently combine memory safety and side-channel protection mechanisms for data confidentiality. For this, I propose BLACKOUT, a hardware-software extension to CHERI that enforces data-oblivious computation on sensitive data, and inherits the memory safety properties of CHERI, all while introducing minimal overheads.

The proposed solutions confirm that hardware-assisted mechanisms can indeed be used to efficiently protect data at run-time, both from direct access and side-channel leakage. I conclude my dissertation with promising directions for future work.

2025

CCS

BLACKOUT: Data-Oblivious Computation with Blinded Capabilities

H ElAtali, M Gülmez, T Nyman, and N Asokan

In ACM Conference on Computer and Communications Security (CCS), 2025

arXiv
CacheSquash: Making caches speculation-aware

H ElAtali, and N Asokan

arXiv preprint, 2025

arXiv

2024

SecDev

BliMe Linter

H ElAtali, X Duan, H Liljestrand, M Xu, and 1 more author

In IEEE Secure Development Conference (SecDev), 2024

arXiv Bib

@inproceedings{blimeLinter24,
  title = {BliMe Linter},
  author = {ElAtali, H and Duan, X and Liljestrand, H and Xu, M and Asokan, N},
  booktitle = {IEEE Secure Development Conference (SecDev)},
  year = {2024},
  doi = {10.1109/SecDev61143.2024.00011},
  journal = {arXiv preprint},
  archiveprefix = {arXiv},
  primaryclass = {cs.CR},
}

HOST

Data-Oblivious ML Accelerators using Hardware Security Extensions

H ElAtali, J Z Jekel, L J Gunn, and N Asokan

In IEEE International Symposium on Hardware Oriented Security and Trust (HOST), 2024

arXiv Bib Website

@inproceedings{dolma24,
  title = {Data-Oblivious ML Accelerators using Hardware Security Extensions},
  author = {ElAtali, H and Jekel, J Z and Gunn, L J and Asokan, N},
  booktitle = {IEEE International Symposium on Hardware Oriented Security and Trust (HOST)},
  location = {Tysons Corner, VA, USA},
  year = {2024},
  doi = {10.1109/HOST55342.2024.10545398},
}

NDSS

BliMe: Verifiably Secure Outsourced Computation with Hardware-Enforced Taint Tracking

H ElAtali, L J Gunn, H Liljestrand, and N Asokan

In Network and Distributed System Security Symposium (NDSS), 2024

arXiv Bib Code Website

@inproceedings{blime24,
  title = {BliMe: Verifiably Secure Outsourced Computation with Hardware-Enforced Taint Tracking},
  author = {ElAtali, H and Gunn, L J and Liljestrand, H and Asokan, N},
  booktitle = {Network and Distributed System Security Symposium (NDSS)},
  location = {San Diego, CA, USA},
  year = {2024},
  isbn = {1-891562-93-2},
  doi = {10.14722/ndss.2024.24105},
}