View in EDS

DoTI:面向数据业务的TEE融合技术研究.

Saved in:
Bibliographic Details
Title: DoTI:面向数据业务的TEE融合技术研究. (Chinese)
Alternate Title: DoTI: research on data-oriented TEE integration technology. (English)
Authors: 马承彦, 卢笛, 马鑫迪, 习宁, 王锦锦, 马建峰
Source: Journal on Communication / Tongxin Xuebao; Feb2025, Vol. 46 Issue 2, p18-28, 11p
Abstract (English): Collaborative platforms face the challenges of system and data security. Trusted execution environment(TEE) implements plaintext-based confidential computing through hardware isolation technology, ensuring the confidentiality and integrity of code and data. However, heterogeneous TEE technologies lead to security issues in data interoperability across TEE. To address the aforementioned issues, a TEE integration technology based on data manipulation language was proposed, combined with the cryptography method of attribute-based encryption to maintain the isolation of TEE. The experimental results show that the performance of the database migrated to TEE in DoTI is about 119.15% of the original database, and the network communication performance is better than existing solutions, which can meet the availability and security of data sharing in the collaborative platform. [ABSTRACT FROM AUTHOR]
Abstract (Chinese): 协同平台面临系统和数据安全的挑战, 可信执行环境 (TEE) 通过硬件隔离技术实现基于明文的机密计 算, 确保代码和数据的机密性与完整性。然而, 异构的 TEE 技术使得同一份代码或程序无法直接在不同TEE架 构中直接运行并相互提供可信的数据操作接口, 导致跨 TEE 场景下任务协同执行的安全问题。为了解决上述问 题, 提出一种基于数据操纵语言的 TEE 融合技术 DoTI, 从数据处理的业务层解决跨 TEE 的数据安全交互问题, 并结合基于属性加密的密码学方法保持多 TEE 协同的隔离性。实验结果表明, 在 DoT I环境下迁移至TEE的数据 库性能约为原始数据库的 119.15%, 且网络通信能力优于现有方案, 能够满足协同平台数据共享的可用性和安全 性要求。 [ABSTRACT FROM AUTHOR]
Copyright of Journal on Communication / Tongxin Xuebao is the property of Journal on Communications Editorial Office and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)
Database: Complementary Index
Description
Abstract:Collaborative platforms face the challenges of system and data security. Trusted execution environment(TEE) implements plaintext-based confidential computing through hardware isolation technology, ensuring the confidentiality and integrity of code and data. However, heterogeneous TEE technologies lead to security issues in data interoperability across TEE. To address the aforementioned issues, a TEE integration technology based on data manipulation language was proposed, combined with the cryptography method of attribute-based encryption to maintain the isolation of TEE. The experimental results show that the performance of the database migrated to TEE in DoTI is about 119.15% of the original database, and the network communication performance is better than existing solutions, which can meet the availability and security of data sharing in the collaborative platform. [ABSTRACT FROM AUTHOR]
ISSN:1000436X
DOI:10.11959/j.issn.1000-436x.2025002