S3 Lab - Software & Systems Security Laboratory
CAFE logo


Cloud Application Function Enclave (CAFE) is an end-to-end framework for confidential distribution and execution of cloud applications. Attackers with a reverse-engineering capability may steal or manipulate sensitive application logic. CAFE prevents such attempts using hypervisor- and hardware-based techniques.

Available Work

  • CAFE: a trusted execution environment for encrypted application code execution (paper, short paper).