Pramod Bhatotia has won the Best Paper award at EUROSYS 2017
Congratulations to Pramod Bhatotia and his team, whose paper 'SGXBOUNDS: Memory Safety for Shielded Execution' has won the Best Paper award at EUROSYS 2017. This is a great achievement - EUROSYS is the premier conference in computer systems research.
Shielded execution based on Intel SGX provides strong security guarantees for legacy applications running on untrusted platforms. However, memory safety attacks such as Heartbleed can render the confidentiality and integrity properties of shielded execution completely ineffective. To prevent these attacks, the state-of-the-art memory-safety approaches can be used in the context of shielded execution. In this work, the team first show that two prominent software- and hardware-based defenses, AddressSanitizer and Intel MPX respectively, are impractical for shielded execution due to high performance and memory overheads. This motivated the design of SGXBounds: an efficient memory-safety approach for shielded execution exploiting the architectural features of Intel SGX. The design is based on a simple combination of tagged pointers and compact memory layout.
Pramod's team have also recently had their work on privacy-preserving stream analytics using approximate computing accepted for presentation at USENIX ATC'17. Check out their system.
Great work Pramod!