WAVEN: WebAssembly Memory Virtualization for Enclaves
Weili Wang
Network and Distributed System Security (NDSS) Symposium 2025 · Day 3 · Confidential Computing 2
The talk "WAVEN: WebAssembly Memory Virtualization for Enclaves" by Weili Wang introduces a novel memory virtualization scheme designed to enhance the capabilities of WebAssembly (Wasm) within trusted execution environments (TEEs), particularly Intel SGX enclaves. Wang, a researcher from Southern University of Science and Technology, presents WAVEN as a solution to critical limitations of Wasm's inherent linear memory model when applied to multi-tenant confidential computing scenarios. The core problem addressed is the inefficient memory sharing and the complete lack of fine-grained memory access control, which are essential for secure data sharing in platforms like confidential data markets and secure federated learning.
AI review
Legitimate systems security research solving a real problem — Wasm's flat linear memory model is genuinely broken for multi-tenant enclave workloads, and the software MMU approach with dual page tables is a clean, well-reasoned solution. Competent academic work that will matter to the narrow audience building confidential computing platforms, but it's not going to reshape anyone's threat model or make a practitioner rethink their architecture tomorrow.