{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2017:RVKUUIBUUMWI5YGPLZYBHKEKKA","short_pith_number":"pith:RVKUUIBU","canonical_record":{"source":{"id":"1707.03473","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2017-07-11T21:51:36Z","cross_cats_sorted":[],"title_canon_sha256":"95f9b096e71021395ebbf37a18738a36903c3d117d9253a001cef2f5bb01444b","abstract_canon_sha256":"8414d4147037507f32a2676ae1f4aec3f08a4c88040a16564f32fc9f09fb7dc3"},"schema_version":"1.0"},"canonical_sha256":"8d554a2034a32c8ee0cf5e7013a88a5018f5c891ab3c2744bd6ad41df1b7ce75","source":{"kind":"arxiv","id":"1707.03473","version":2},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1707.03473","created_at":"2026-05-18T00:34:15Z"},{"alias_kind":"arxiv_version","alias_value":"1707.03473v2","created_at":"2026-05-18T00:34:15Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1707.03473","created_at":"2026-05-18T00:34:15Z"},{"alias_kind":"pith_short_12","alias_value":"RVKUUIBUUMWI","created_at":"2026-05-18T12:31:43Z"},{"alias_kind":"pith_short_16","alias_value":"RVKUUIBUUMWI5YGP","created_at":"2026-05-18T12:31:43Z"},{"alias_kind":"pith_short_8","alias_value":"RVKUUIBU","created_at":"2026-05-18T12:31:43Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2017:RVKUUIBUUMWI5YGPLZYBHKEKKA","target":"record","payload":{"canonical_record":{"source":{"id":"1707.03473","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2017-07-11T21:51:36Z","cross_cats_sorted":[],"title_canon_sha256":"95f9b096e71021395ebbf37a18738a36903c3d117d9253a001cef2f5bb01444b","abstract_canon_sha256":"8414d4147037507f32a2676ae1f4aec3f08a4c88040a16564f32fc9f09fb7dc3"},"schema_version":"1.0"},"canonical_sha256":"8d554a2034a32c8ee0cf5e7013a88a5018f5c891ab3c2744bd6ad41df1b7ce75","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:34:15.010890Z","signature_b64":"2PgtEJ9EWEStSuRivccK2JYKuEdbV8ZqJLugNsCWeWT+DPt2S73jPTE7LcTIr7xvE1ox1Jypj+YfThnnter+Bg==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"8d554a2034a32c8ee0cf5e7013a88a5018f5c891ab3c2744bd6ad41df1b7ce75","last_reissued_at":"2026-05-18T00:34:15.010228Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:34:15.010228Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1707.03473","source_version":2,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:34:15Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"/8ABmG9mkDdpeQl/MJdFugN3na3fsj+/LCypCOec02b9exlm303uKunepalorfJgqjaWd/GYeIb6zh/M5IEWCw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-26T16:52:06.874352Z"},"content_sha256":"9615d2def33fc2499011dcefe29c04c104e9608cc82903654f266fcee409ce93","schema_version":"1.0","event_id":"sha256:9615d2def33fc2499011dcefe29c04c104e9608cc82903654f266fcee409ce93"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2017:RVKUUIBUUMWI5YGPLZYBHKEKKA","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Stacco: Differentially Analyzing Side-Channel Traces for Detecting SSL/TLS Vulnerabilities in Secure Enclaves","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Mengyuan Li, Sanchuan Chen, Yinqian Zhang, Yuan Xiao","submitted_at":"2017-07-11T21:51:36Z","abstract_excerpt":"Intel Software Guard Extension (SGX) offers software applications enclave to protect their confidentiality and integrity from malicious operating systems. The SSL/TLS protocol, which is the de facto standard for protecting transport-layer network communications, has been broadly deployed for a secure communication channel. However, in this paper, we show that the marriage between SGX and SSL may not be smooth sailing.\n  Particularly, we consider a category of side-channel attacks against SSL/TLS implementations in secure enclaves, which we call the control-flow inference attacks. In these atta"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1707.03473","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:34:15Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"CsWB+VtPr7SOFS6bU68/7LRUETWk8ttd15GM88Z9M7m8RVIRucEtbLgDyOBauw8rYQ+/+RwgjBsqV+wYUH6ABg==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-26T16:52:06.875017Z"},"content_sha256":"51e01c332826e1cf371b14c5534ef93213d1e7e7448b2ade9bedbc2917a4ec19","schema_version":"1.0","event_id":"sha256:51e01c332826e1cf371b14c5534ef93213d1e7e7448b2ade9bedbc2917a4ec19"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/RVKUUIBUUMWI5YGPLZYBHKEKKA/bundle.json","state_url":"https://pith.science/pith/RVKUUIBUUMWI5YGPLZYBHKEKKA/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/RVKUUIBUUMWI5YGPLZYBHKEKKA/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-05-26T16:52:06Z","links":{"resolver":"https://pith.science/pith/RVKUUIBUUMWI5YGPLZYBHKEKKA","bundle":"https://pith.science/pith/RVKUUIBUUMWI5YGPLZYBHKEKKA/bundle.json","state":"https://pith.science/pith/RVKUUIBUUMWI5YGPLZYBHKEKKA/state.json","well_known_bundle":"https://pith.science/.well-known/pith/RVKUUIBUUMWI5YGPLZYBHKEKKA/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2017:RVKUUIBUUMWI5YGPLZYBHKEKKA","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"8414d4147037507f32a2676ae1f4aec3f08a4c88040a16564f32fc9f09fb7dc3","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2017-07-11T21:51:36Z","title_canon_sha256":"95f9b096e71021395ebbf37a18738a36903c3d117d9253a001cef2f5bb01444b"},"schema_version":"1.0","source":{"id":"1707.03473","kind":"arxiv","version":2}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1707.03473","created_at":"2026-05-18T00:34:15Z"},{"alias_kind":"arxiv_version","alias_value":"1707.03473v2","created_at":"2026-05-18T00:34:15Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1707.03473","created_at":"2026-05-18T00:34:15Z"},{"alias_kind":"pith_short_12","alias_value":"RVKUUIBUUMWI","created_at":"2026-05-18T12:31:43Z"},{"alias_kind":"pith_short_16","alias_value":"RVKUUIBUUMWI5YGP","created_at":"2026-05-18T12:31:43Z"},{"alias_kind":"pith_short_8","alias_value":"RVKUUIBU","created_at":"2026-05-18T12:31:43Z"}],"graph_snapshots":[{"event_id":"sha256:51e01c332826e1cf371b14c5534ef93213d1e7e7448b2ade9bedbc2917a4ec19","target":"graph","created_at":"2026-05-18T00:34:15Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"Intel Software Guard Extension (SGX) offers software applications enclave to protect their confidentiality and integrity from malicious operating systems. The SSL/TLS protocol, which is the de facto standard for protecting transport-layer network communications, has been broadly deployed for a secure communication channel. However, in this paper, we show that the marriage between SGX and SSL may not be smooth sailing.\n  Particularly, we consider a category of side-channel attacks against SSL/TLS implementations in secure enclaves, which we call the control-flow inference attacks. In these atta","authors_text":"Mengyuan Li, Sanchuan Chen, Yinqian Zhang, Yuan Xiao","cross_cats":[],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2017-07-11T21:51:36Z","title":"Stacco: Differentially Analyzing Side-Channel Traces for Detecting SSL/TLS Vulnerabilities in Secure Enclaves"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1707.03473","kind":"arxiv","version":2},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:9615d2def33fc2499011dcefe29c04c104e9608cc82903654f266fcee409ce93","target":"record","created_at":"2026-05-18T00:34:15Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"8414d4147037507f32a2676ae1f4aec3f08a4c88040a16564f32fc9f09fb7dc3","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2017-07-11T21:51:36Z","title_canon_sha256":"95f9b096e71021395ebbf37a18738a36903c3d117d9253a001cef2f5bb01444b"},"schema_version":"1.0","source":{"id":"1707.03473","kind":"arxiv","version":2}},"canonical_sha256":"8d554a2034a32c8ee0cf5e7013a88a5018f5c891ab3c2744bd6ad41df1b7ce75","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"8d554a2034a32c8ee0cf5e7013a88a5018f5c891ab3c2744bd6ad41df1b7ce75","first_computed_at":"2026-05-18T00:34:15.010228Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T00:34:15.010228Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"2PgtEJ9EWEStSuRivccK2JYKuEdbV8ZqJLugNsCWeWT+DPt2S73jPTE7LcTIr7xvE1ox1Jypj+YfThnnter+Bg==","signature_status":"signed_v1","signed_at":"2026-05-18T00:34:15.010890Z","signed_message":"canonical_sha256_bytes"},"source_id":"1707.03473","source_kind":"arxiv","source_version":2}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:9615d2def33fc2499011dcefe29c04c104e9608cc82903654f266fcee409ce93","sha256:51e01c332826e1cf371b14c5534ef93213d1e7e7448b2ade9bedbc2917a4ec19"],"state_sha256":"1f97c7261679b64d77602eba32c4e3c1ef5710a62d32149a01b0c10f539772d6"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"EmnJl1s7rtsn+GeR842wkGhkIscY9GXV7evDBKTLZViHCk6ZXplHAGIr3cyiREgnvVtRj0htBnbdEB/MkLZKBw==","signed_message":"bundle_sha256_bytes","signed_at":"2026-05-26T16:52:06.878290Z","bundle_sha256":"489245511333dee46486c21fa6fd82e5b5b8dbf20583baffa26af3c9f5e9b8f9"}}