TaLoS: Secure and Transparent TLS Termination inside SGX Enclaves

Pierre-Louis Aublin; Florian Kelbert; Dan O'Keeffe; Divya Muthukumaran; Christian Priebe; Joshua Lind; Robert Krahn; Christof Fetzer; David Eyers; Peter Pietzuch

TaLoS: Secure and Transparent TLS Termination inside SGX Enclaves

Research output: Preprint/Documentation/Report › Working paper

Contributors

Pierre-Louis Aublin - (Author)
Florian Kelbert - (Author)
Dan O'Keeffe - (Author)
Divya Muthukumaran - (Author)
Christian Priebe - (Author)
Joshua Lind - (Author)
Robert Krahn - , Chair of Systems Engineering (Author)
Christof Fetzer - , Chair of Systems Engineering (Author)
David Eyers - (Author)
Peter Pietzuch - (Author)

Abstract

We introduce TaLoS1, a drop-in replacement for existing transport
layer security (TLS) libraries that protects itself from a malicious
environment by running inside an Intel SGX trusted execution en-
vironment. By minimising the amount of enclave transitions and
reducing the overhead of the remaining enclave transitions, TaLoS
imposes an overhead of no more than 31% in our evaluation with
the Apache web server and the Squid proxy.

Details

Original language	English
Number of pages	4
Publication status	Published - 2017

No renderer: customAssociatesEventsRenderPortal,dk.atira.pure.api.shared.model.researchoutput.WorkingPaper

External IDs

ORCID	/0000-0003-0768-6351/work/141545301

Research Portal of the TU Dresden

TaLoS: Secure and Transparent TLS Termination inside SGX Enclaves

Contributors

Abstract

Details

External IDs

Keywords

Research priority areas of TU Dresden

DFG Classification of Subject Areas according to Review Boards