TEE^BFT: Pricing the Security of Data Center Execution Assurance

This talks describes the paper “TEE^BFT: Pricing the Security of Data Center Execution Assurance” that develops a cost-of-collusion principal-agent model for compromising a TEE in a Data Center Execution Assurance design. The model isolates the main drivers of attack profitability: a K-of-n coordination threshold, independent detection risk q, etc. In the talk we motivate the cloud deployment scenario in which TEEs are secure. Then we present a model that described the maximum value a TEE can secure in a public cloud.