The 3rd AEGIS Symposium on Cyber Security

2024 (Online)

The Annual rEading Group in Information Security (AEGIS) Symposium is an annual symposium held online by a group of researchers of Privacy and Security in Computer Science.

In 2023, the 2nd AEGIS Symposium hosted 12 talks given by a variety of security researchers in security, covering a wide range of topics with a highlight on LLM security. The 2024 symposium will be the 3rd symposium of the AEGIS symposia series.

As usual, the 3rd AEGIS Symposium will be delivered virtually in Zoom. For any additional questions, please contact the organization committee.

Important News:

We have finalized the presenters this year, featuring 12 talks in four sessions. The topics of the presentation will be finalized in mid June. Looking forward to see you in AEGIS 2024!

Upcoming Event:

Session 2: Security Threat Analysis and Modelling

Reusable Enclaves for Confidential Serverless Computing

Shixuan Zhao, The Ohio State University

Abstract:

The recent development of Trusted Execution Environment has brought unprecedented opportunities for confidential computing within cloud-based systems. Among various popular cloud business models, serverless computing has gained dominance since its emergence, leading to a high demand for confidential serverless computing services based on trusted enclaves. However, the issue of cold start overhead significantly hinders its performance, as new enclaves need to be created to ensure a clean and verifiable execution environment. In this paper, we propose a novel approach for constructing reusable enclaves that enable rapid enclave reset and robust security with three key enabling techniques: enclave snapshot and rewinding, nested attestation, and multi-layer intra-enclave compartmentalisation. We have built a prototype system for confidential serverless computing, integrating OpenWhisk and a WebAssembly runtime, which significantly reduces the cold start overhead in an end-to-end serverless setting while imposing a reasonable performance impact on standard execution.

Sessions:

  • Session 1: Machine Learning and Large Language Model
  • Session 2: Security Threat Analysis and Modelling
  • Session 3: Network Security
  • Session 4: Invited Keynotes from Database and Software Engineering

Presenters:

Shufan Zhang University of Waterloo
Xinyue Shen CISPA Helmholtz Center for Information Security
Xin Jin The Ohio State University
Zhuo Zhang Purdue University
Ling Zhang University of Wisconsin-Madison
Yichen Li Chinese University of Hong Kong
Shixuan Zhao The Ohio State University
Limin Wang Nanjing University
Yan Long University of Michigan
Qifan Zhang University of California, Irvine
Yunyi Zhang Tsinghua University
Linkai Zheng Tsinghua University

Organization Committee

Program Chair Yuqing Yang The Ohio State University
Program Co-Chair Xiang Li Nankai University