{"id":"https://openalex.org/W4404515057","doi":"https://doi.org/10.1145/3689934.3690838","title":"IlluminaTEE: Effective Man-At-The-End Attacks from within ARM TrustZone","display_name":"IlluminaTEE: Effective Man-At-The-End Attacks from within ARM TrustZone","publication_year":2024,"publication_date":"2024-11-19","ids":{"openalex":"https://openalex.org/W4404515057","doi":"https://doi.org/10.1145/3689934.3690838"},"language":"en","primary_location":{"id":"doi:10.1145/3689934.3690838","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3689934.3690838","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3689934.3690838","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 Workshop on Research on offensive and defensive techniques in the context of Man At The End (MATE) attacks","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3689934.3690838","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067122338","display_name":"Matti Schulze","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Matti Schulze","raw_affiliation_strings":["FAU Erlangen-N\u00fcrnberg, Erlangen-N\u00fcrnberg, Germany"],"raw_orcid":"https://orcid.org/0009-0002-3615-7627","affiliations":[{"raw_affiliation_string":"FAU Erlangen-N\u00fcrnberg, Erlangen-N\u00fcrnberg, Germany","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5057044885","display_name":"Christian Lindenmeier","orcid":"https://orcid.org/0000-0003-2369-2196"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Christian Lindenmeier","raw_affiliation_strings":["FAU Erlangen-N\u00fcrnberg, Erlangen-N\u00fcrnberg, Germany"],"raw_orcid":"https://orcid.org/0000-0003-2369-2196","affiliations":[{"raw_affiliation_string":"FAU Erlangen-N\u00fcrnberg, Erlangen-N\u00fcrnberg, Germany","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5081302706","display_name":"Jonas R\u00f6ckl","orcid":"https://orcid.org/0000-0002-3970-5580"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jonas R\u00f6ckl","raw_affiliation_strings":["FAU Erlangen-N\u00fcrnberg, Erlangen-N\u00fcrnberg, Germany"],"raw_orcid":"https://orcid.org/0000-0002-3970-5580","affiliations":[{"raw_affiliation_string":"FAU Erlangen-N\u00fcrnberg, Erlangen-N\u00fcrnberg, Germany","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5035871932","display_name":"Felix Freiling","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Felix Freiling","raw_affiliation_strings":["FAU Erlangen-N\u00fcrnberg, Erlangen-N\u00fcrnberg, Germany"],"raw_orcid":"https://orcid.org/0000-0002-8279-8401","affiliations":[{"raw_affiliation_string":"FAU Erlangen-N\u00fcrnberg, Erlangen-N\u00fcrnberg, Germany","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5067122338"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.9934,"has_fulltext":true,"cited_by_count":3,"citation_normalized_percentile":{"value":0.81160811,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":96,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"11","last_page":"21"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9868999719619751,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9736999869346619,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5932086706161499},{"id":"https://openalex.org/keywords/end-to-end-principle","display_name":"End-to-end principle","score":0.5797340869903564},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.30714935064315796}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5932086706161499},{"id":"https://openalex.org/C74296488","wikidata":"https://www.wikidata.org/wiki/Q2527392","display_name":"End-to-end principle","level":2,"score":0.5797340869903564},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.30714935064315796}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3689934.3690838","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3689934.3690838","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3689934.3690838","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 Workshop on Research on offensive and defensive techniques in the context of Man At The End (MATE) attacks","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3689934.3690838","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3689934.3690838","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3689934.3690838","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 Workshop on Research on offensive and defensive techniques in the context of Man At The End (MATE) attacks","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G8623245506","display_name":null,"funder_award_id":"16KIS1314","funder_id":"https://openalex.org/F4320321114","funder_display_name":"Bundesministerium f\u00fcr Bildung und Forschung"}],"funders":[{"id":"https://openalex.org/F4320321114","display_name":"Bundesministerium f\u00fcr Bildung und Forschung","ror":"https://ror.org/04pz7b180"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4404515057.pdf","grobid_xml":"https://content.openalex.org/works/W4404515057.grobid-xml"},"referenced_works_count":12,"referenced_works":["https://openalex.org/W2043115231","https://openalex.org/W2602229646","https://openalex.org/W2605883969","https://openalex.org/W2792101620","https://openalex.org/W2897859437","https://openalex.org/W3046286843","https://openalex.org/W3127135009","https://openalex.org/W4236786653","https://openalex.org/W4285327757","https://openalex.org/W4289038676","https://openalex.org/W4291467042","https://openalex.org/W4297802331"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2151749779","https://openalex.org/W3179968364","https://openalex.org/W2390279801","https://openalex.org/W4391913857","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109"],"abstract_inverted_index":{"To":[0],"break":[1],"end-to-end":[2],"encryption":[3,189],"used":[4],"by":[5],"apps":[6],"(e.g.,":[7],"messengers)":[8],"today,":[9],"attackers":[10],"must":[11],"obtain":[12],"code":[13,43],"execution":[14,73],"directly":[15],"on":[16,77,207],"an":[17,167],"end":[18],"device":[19],"to":[20,63,68,97,169,215,221],"access":[21],"data":[22,159,205],"before":[23],"it":[24],"is":[25,44,67,135],"encrypted,":[26],"resulting":[27],"in":[28,71],"Man-At-The-End":[29],"(MATE)":[30],"attacks.":[31],"The":[32],"effectiveness":[33],"of":[34,118,173,180,191,196,204,225],"such":[35,55],"attacks":[36,66],"rises":[37],"with":[38,176],"the":[39,42,48,82,116,170,188,192,197,213,223],"privilege":[40,84],"level":[41,52],"executed":[45],"on,":[46],"e.g.,":[47],"system":[49,120],"or":[50],"hypervisor":[51],"employing":[53],"techniques":[54],"as":[56,76,136,138,166],"virtual":[57],"machine":[58],"introspection":[59,128,134],"(VMI).":[60],"Another":[61],"option":[62],"perform":[64],"MATE":[65,227],"place":[69],"software":[70,218],"trusted":[72],"environments":[74],"(TEEs),":[75],"many":[78],"platforms,":[79],"these":[80],"have":[81],"highest":[83],"while":[85],"also":[86],"providing":[87],"security":[88],"guarantees.":[89],"However,":[90],"unlike":[91],"hypervisors,":[92],"TEEs":[93,106],"were":[94],"primarily":[95],"built":[96],"achieve":[98],"isolation":[99],"and":[100,182,201],"not":[101],"introspection.":[102],"For":[103],"this":[104],"reason,":[105],"usually":[107],"lack":[108],"technical":[109],"means":[110],"like":[111],"hardware":[112,175],"breakpoints,":[113],"apparently":[114],"limiting":[115],"possibilities":[117],"fine-grained":[119],"monitoring.":[121],"By":[122,140],"presenting":[123],"IlluminaTEE,":[124],"a":[125,142,177],"sophisticated":[126],"TEE-based":[127,133],"tool,":[129],"we":[130,146,150,185],"show":[131,151],"that":[132,152,184],"powerful":[137,226],"VMI.":[139],"applying":[141],"novel":[143],"technique":[144],"which":[145],"call":[147],"state-change":[148],"trapping,":[149],"IlluminaTEE":[153,165],"can":[154,186],"extract":[155,187],"highly":[156,199],"ephemeral":[157,200],"personal":[158,208],"from":[160],"arbitrary":[161],"applications.":[162],"We":[163],"implement":[164,216],"extension":[168],"TEE":[171],"firmware":[172],"real":[174],"stock":[178],"version":[179],"Android":[181],"demonstrate":[183],"keys":[190],"Signal":[193],"messenger,":[194],"one":[195],"most":[198],"privacy-critical":[202],"bits":[203],"existing":[206],"devices":[209],"today.":[210],"This":[211],"highlights":[212],"need":[214],"better":[217],"protection":[219],"mechanisms":[220],"mitigate":[222],"risks":[224],"attackers.":[228]},"counts_by_year":[{"year":2025,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}