2025
Cage: Hardware-Accelerated Safe WebAssembly.
[DOI]
Martin Fink
,
Dimitrios Stavrakakis
,
Dennis Sprokholt
,
Soham Chakraborty
,
Jan-Erik Ekberg
,
Pramod Bhatotia
Proceedings of the 23rd ACM/IEEE International Symposium on Code Generation and Optimization, 2025

2024
A Viewpoint: Harmonizing the Diverse Memory Safety Fronts.
[DOI]
Hans Liljestrand
,
Jan-Erik Ekberg
IEEE Secur. Priv., 2024

Attestation with Constrained Relying Party.
[DOI]
Mariam Moustafa
,
Arto Niemi
,
Philip Ginzboorg
,
Jan-Erik Ekberg
Proceedings of the 10th International Conference on Information Systems Security and Privacy, 2024

Cherifying Linux: A Practical View on using CHERI.
[DOI]
Kui Wang
,
Dmitry Kasatkin
,
Vincent Ahlrichs
,
Lukas Auer
,
Konrad Hohentanner
,
Julian Horsch
,
Jan-Erik Ekberg
Proceedings of the 17th European Workshop on Systems Security, 2024

MultiTEE: Distributing Trusted Execution Environments.
[DOI]
Simon Ott
,
Benjamin Orthen
,
Alexander Weidinger
,
Julian Horsch
,
Vijayanand Nayani
,
Jan-Erik Ekberg
Proceedings of the 19th ACM Asia Conference on Computer and Communications Security, 2024

2023
Platform Attestation in Consumer Devices.
[DOI]
Arto Niemi
,
Vijayanand Nayani
,
Mariam Moustafa
,
Jan-Erik Ekberg
Proceedings of the 33rd Conference of Open Innovations Association, 2023

2022
Toward Register Spilling Security Using LLVM and ARM Pointer Authentication.
[DOI]
Andrea Fanti
,
Carlos Chinea Perez
,
Rémi Denis-Courmont
,
Gianluca Roascio
,
Jan-Erik Ekberg
IEEE Trans. Comput. Aided Des. Integr. Circuits Syst., 2022

Hardware Platform Security for Mobile Devices.
[DOI]
Lachlan J. Gunn
,
N. Asokan
,
Jan-Erik Ekberg
,
Hans Liljestrand
,
Vijayanand Nayani
,
Thomas Nyman
Found. Trends Priv. Secur., 2022

Color My World: Deterministic Tagging for Memory Safety.
[DOI]
Hans Liljestrand
,
Carlos Chinea Perez
,
Rémi Denis-Courmont
,
Jan-Erik Ekberg
,
N. Asokan
CoRR, 2022

Trusted Hart for Mobile RISC-V Security.
[DOI]
Vladimir Ushakov
,
Sampo Sovio
,
Qingchao Qi
,
Vijayanand Nayani
,
Valentin Manea
,
Philip Ginzboorg
,
Jan-Erik Ekberg
Proceedings of the IEEE International Conference on Trust, 2022

Towards Interoperable Enclave Attestation: Learnings from Decades of Academic Work.
[DOI]
Arto Niemi
,
Sampo Sovio
,
Jan-Erik Ekberg
Proceedings of the 31st Conference of Open Innovations Association, 2022

Towards securely migrating webassembly enclaves.
[DOI]
Vasile Adrian Bogdan Pop
,
Arto Niemi
,
Valentin Manea
,
Antti Rusanen
,
Jan-Erik Ekberg
Proceedings of the EuroSec@EUROSYS 2022: Proceedings of the 15th European Workshop on Systems Security, 2022

2021
PACStack: an Authenticated Call Stack.
[DOI]
Hans Liljestrand
,
Thomas Nyman
,
Lachlan J. Gunn
,
Jan-Erik Ekberg
,
N. Asokan
Proceedings of the 30th USENIX Security Symposium, 2021

Trusted Sockets Layer: A TLS 1.3 Based Trusted Channel Protocol.
[DOI]
Arto Niemi
,
Vasile Adrian Bogdan Pop
,
Jan-Erik Ekberg
Proceedings of the Secure IT Systems - 26th Nordic Conference, NordSec 2021, Virtual Event, 2021

2020
Camouflage: Hardware-assisted CFI for the ARM Linux kernel.
[DOI]
Rémi Denis-Courmont
,
Hans Liljestrand
,
Carlos Chinea Perez
,
Jan-Erik Ekberg
Proceedings of the 57th ACM/IEEE Design Automation Conference, 2020

2019
PAC it up: Towards Pointer Integrity using ARM Pointer Authentication.
[DOI]
Hans Liljestrand
,
Thomas Nyman
,
Kui Wang
,
Carlos Chinea Perez
,
Jan-Erik Ekberg
,
N. Asokan
Proceedings of the 28th USENIX Security Symposium, 2019

Protecting the stack with PACed canaries.
[DOI]
Hans Liljestrand
,
Zaheer Gauhar
,
Thomas Nyman
,
Jan-Erik Ekberg
,
N. Asokan
Proceedings of the 4th Workshop on System Software for Trusted Execution, 2019

Authenticated Call Stack.
[DOI]
Hans Liljestrand
,
Thomas Nyman
,
Jan-Erik Ekberg
,
N. Asokan
Proceedings of the 56th Annual Design Automation Conference 2019, 2019

2017
CFI CaRE: Hardware-Supported Call and Return Enforcement for Commercial Microcontrollers.
[DOI]
Thomas Nyman
,
Jan-Erik Ekberg
,
Lucas Davi
,
N. Asokan
Proceedings of the Research in Attacks, Intrusions, and Defenses, 2017

The Circle Game: Scalable Private Membership Test Using Trusted Hardware.
[DOI]
Sandeep Tamrakar
,
Jian Liu
,
Andrew Paverd
,
Jan-Erik Ekberg
,
Benny Pinkas
,
N. Asokan
Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, 2017

2016
Hardware Isolation for Trusted Execution.
[DOI]
Jan-Erik Ekberg
Proceedings of the 6th Workshop on Security and Privacy in Smartphones and Mobile Devices, 2016

C-FLAT: Control-Flow Attestation for Embedded Systems Software.
[DOI]
Tigist Abera
,
N. Asokan
,
Lucas Davi
,
Jan-Erik Ekberg
,
Thomas Nyman
,
Andrew Paverd
,
Ahmad-Reza Sadeghi
,
Gene Tsudik
Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, 2016

2015
On Rehoming the Electronic ID to TEEs.
[DOI]
Sandeep Tamrakar
,
Jan-Erik Ekberg
,
Pekka Laitinen
Proceedings of the 2015 IEEE TrustCom/BigDataSE/ISPA, 2015

2014
Mobile Trusted Computing.
[DOI]
N. Asokan
,
Jan-Erik Ekberg
,
Kari Kostiainen
,
Anand Rajan
,
Carlos V. Rozas
,
Ahmad-Reza Sadeghi
,
Steffen Schulz
,
Christian Wachsmann
Proc. IEEE, 2014

The Untapped Potential of Trusted Execution Environments on Mobile Devices.
[DOI]
Jan-Erik Ekberg
,
Kari Kostiainen
,
N. Asokan
IEEE Secur. Priv., 2014

Citizen Electronic Identities using TPM 2.0.
[DOI]
Thomas Nyman
,
Jan-Erik Ekberg
,
N. Asokan
Proceedings of the 4th International Workshop on Trustworthy Embedded Devices, 2014

2013
Securing Software Architectures for Trusted Processor Environments ; Programvarusystem för säkra processorarkitekturer.
[DOI]
Jan-Erik Ekberg
PhD thesis, 2013

Tapping and Tripping with NFC.
[DOI]
Sandeep Tamrakar
,
Jan-Erik Ekberg
Proceedings of the Trust and Trustworthy Computing - 6th International Conference, 2013

Trusted execution environments on mobile devices.
[DOI]
Jan-Erik Ekberg
,
Kari Kostiainen
,
N. Asokan
Proceedings of the 2013 ACM SIGSAC Conference on Computer and Communications Security, 2013

2012
Authenticated Encryption Primitives for Size-Constrained Trusted Computing.
[DOI]
Jan-Erik Ekberg
,
Alexandra Afanasyeva
,
N. Asokan
Proceedings of the Trust and Trustworthy Computing - 5th International Conference, 2012

2011
Secure Device Pairing Based on a Visual Channel: Design and Usability Study.
[DOI]
Nitesh Saxena
,
Jan-Erik Ekberg
,
Kari Kostiainen
,
N. Asokan
IEEE Trans. Inf. Forensics Secur., 2011

Practical Property-Based Attestation on Mobile Devices.
[DOI]
Kari Kostiainen
,
N. Asokan
,
Jan-Erik Ekberg
Proceedings of the Trust and Trustworthy Computing - 4th International Conference, 2011

Mass Transit Ticketing with NFC Mobile Phones.
[DOI]
Jan-Erik Ekberg
,
Sandeep Tamrakar
Proceedings of the Trusted Systems - Third International Conference, 2011

Old, new, borrowed, blue --: a perspective on the evolution of mobile platform security architectures.
[DOI]
Kari Kostiainen
,
Elena Reshetova
,
Jan-Erik Ekberg
,
N. Asokan
Proceedings of the First ACM Conference on Data and Application Security and Privacy, 2011

Identity verification schemes for public transport ticketing with NFC phones.
[DOI]
Sandeep Tamrakar
,
Jan-Erik Ekberg
,
N. Asokan
Proceedings of the sixth ACM workshop on Scalable trusted computing, 2011

2010
Mobile Trusted Computing Based on MTM.
[DOI]
Jan-Erik Ekberg
Int. J. Dependable Trust. Inf. Syst., 2010

Key Attestation from Trusted Execution Environments.
[DOI]
Kari Kostiainen
,
Alexandra Dmitrienko
,
Jan-Erik Ekberg
,
Ahmad-Reza Sadeghi
,
N. Asokan
Proceedings of the Trust and Trustworthy Computing, Third International Conference, 2010

Credential Disabling from Trusted Execution Environments.
[DOI]
Kari Kostiainen
,
N. Asokan
,
Jan-Erik Ekberg
Proceedings of the Information Security Technology for Applications, 2010

Can Hand-Held Computers Still Be Better Smart Cards?
[DOI]
Sandeep Tamrakar
,
Jan-Erik Ekberg
,
Pekka Laitinen
,
N. Asokan
,
Tuomas Aura
Proceedings of the Trusted Systems - Second International Conference, 2010

Implementing an application-specific credential platform using late-launched mobile trusted module.
[DOI]
Sven Bugiel
,
Jan-Erik Ekberg
Proceedings of the fifth ACM workshop on Scalable trusted computing, 2010

2009
External Authenticated Non-volatile Memory with Lifecycle Management for State Protection in Trusted Computing.
[DOI]
Jan-Erik Ekberg
,
N. Asokan
Proceedings of the Trusted Systems, First International Conference, 2009

On-board credentials with open provisioning.
[DOI]
Kari Kostiainen
,
Jan-Erik Ekberg
,
N. Asokan
,
Aarne Rantala
Proceedings of the 2009 ACM Symposium on Information, 2009

Trust in a small package: minimized MRTM software implementation for mobile secure environments.
[DOI]
Jan-Erik Ekberg
,
Sven Bugiel
Proceedings of the 4th ACM Workshop on Scalable Trusted Computing, 2009

2008
Random Beacon for Privacy and Group Security.
[DOI]
Aleksi Saarela
,
Jan-Erik Ekberg
,
Kaisa Nyberg
Proceedings of the IEEE International Conference on Wireless and Mobile Computing, 2008

A Platform for OnBoard Credentials.
[DOI]
N. Asokan
,
Jan-Erik Ekberg
Proceedings of the Financial Cryptography and Data Security, 12th International Conference, 2008

Scheduling execution of credentials in constrained secure environments.
[DOI]
Jan-Erik Ekberg
,
N. Asokan
,
Kari Kostiainen
,
Aarne Rantala
Proceedings of the 3rd ACM Workshop on Scalable Trusted Computing, 2008

Post-Payment System for Peer-to-Peer Filesharing.
[DOI]
Heikki Kokkinen
,
Jan-Erik Ekberg
,
Janne Nöyränen
Proceedings of the 5th IEEE Consumer Communications and Networking Conference, 2008

2007
Enabling Fairer Digital Rights Management with Trusted Computing.
[DOI]
Ahmad-Reza Sadeghi
,
Marko Wolf
,
Christian Stüble
,
N. Asokan
,
Jan-Erik Ekberg
Proceedings of the Information Security, 10th International Conference, 2007

2006
Secure Device Pairing based on a Visual Channel.
[DOI]
Nitesh Saxena
,
Jan-Erik Ekberg
,
Kari Kostiainen
,
N. Asokan
IACR Cryptol. ePrint Arch., 2006

Secure Device Pairing based on a Visual Channel (Short Paper).
[DOI]
Nitesh Saxena
,
Jan-Erik Ekberg
,
Kari Kostiainen
,
N. Asokan
Proceedings of the 2006 IEEE Symposium on Security and Privacy (S&P 2006), 2006