Running off-site software middleboxes at third-party service providers has been a popular practice. However, routing large volumes of raw traffic, which may carry sensitive information, to a remote site for processing raises severe security concerns.
Jun 20, 2017
We present LightBox, the first system that can drive off-site middleboxes at near-native speed with stateful processing and the most comprehensive protection to ...
We present LightBox, the first system that can drive off-site mid- dleboxes at near-native speed with stateful processing and the most comprehensive protection ...
Nov 12, 2019 · LightBox protects middlebox from powerful adversary, and it allows stateful network function to run at nearly native speed: it adds only 3us ...
Full-stack protected stateful middlebox at lightning speed. Development Stage. The project is still under development. All core functionalities have been ...
LightBox: Full-stack Protected Stateful Middlebox at Lightning Speed · Author Picture Huayi Duan. City University of Hong Kong and City University of Hong Kong ...
SGX provides confidentiality and integrity. ○ Remotely attest SGX-enabled middleboxes. ○ Enforce correct and secure program behavior.
A LightBox instance comprises two modules in addition to the middlebox itself: a virtual network interface etap and a state management module.
[ACM CCS'19] Huayi Duan, Cong Wang, Xingliang Yuan, Yajin Zhou, Qian Wang, and Kui Ren, “LightBox: Full-stack Protected Stateful Middlebox at Lightning Speed ...
LightBox is the first system that can drive off-site middleboxes at near-native speed with stateful processing and the most comprehensive protection to date ...