https://miscreants.github.io/blog.trailofbits.com/categories/trusted-execution-environment/Recent content in trusted-execution-environment on The Trail of Bits BlogHugoen-usThu, 30 Oct 2025 00:00:00 -0400https://miscreants.github.io/blog.trailofbits.com/2025/10/30/vulnerabilities-in-luks2-disk-encryption-for-confidential-vms/Thu, 30 Oct 2025 07:00:00 -0400https://miscreants.github.io/blog.trailofbits.com/2025/10/30/vulnerabilities-in-luks2-disk-encryption-for-confidential-vms/Trail of Bits is disclosing vulnerabilities in confidential computing systems that use LUKS2 for disk encryption. These vulnerabilities allow attackers with access to storage disks to extract confidential data and modify contents.https://miscreants.github.io/blog.trailofbits.com/2024/09/24/notes-on-aws-nitro-enclaves-attack-surface/Tue, 24 Sep 2024 09:00:36 -0400https://miscreants.github.io/blog.trailofbits.com/2024/09/24/notes-on-aws-nitro-enclaves-attack-surface/In the race to secure cloud applications, AWS Nitro Enclaves have emerged as a powerful tool for isolating sensitive workloads.<br> But with great power comes great responsibility-and potential security pitfalls. As pioneers in confidential computing security, we at<br> Trail of Bits have scrutinized the attack surface of AWS Nitro Enclaves, uncovering potential bugs that could compromise even these<br> hardened environments.https://miscreants.github.io/blog.trailofbits.com/2024/02/16/a-few-notes-on-aws-nitro-enclaves-images-and-attestation/Fri, 16 Feb 2024 09:30:32 -0500https://miscreants.github.io/blog.trailofbits.com/2024/02/16/a-few-notes-on-aws-nitro-enclaves-images-and-attestation/AWS Nitro Enclaves are locked-down virtual machines with support for attestation. They are Trusted Execution Environments (TEEs), similar to Intel SGX, making them useful for running highly security-critical code. However, the AWS Nitro Enclaves platform lacks thorough documentation and mature tooling. So we decided to do some deep research into it […]