Epsilon: A Bring-Your-Own-Data Research Platform with Trusted Verification

Nizomjon Khajiev; Aare Puussaar; Lee Shen Chu; Patrick Olivier; Lay Ki Soon; Delvin Varghese

doi:10.1145/3805690.3805733

Epsilon: A Bring-Your-Own-Data Research Platform with Trusted Verification

Nizomjon Khajiev
, Aare Puussaar
, Lee Shen Chu
, Patrick Olivier
, Lay Ki Soon
, Delvin Varghese

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research

Abstract

We present Epsilon, an open-source platform for analyzing sensitive research data with per-execution verification. Epsilon addresses three practical barriers faced by researchers using Trusted Research Environments (TREs): (1) researchers experience challenges in using their own datasets without uploading data to platform infrastructure; (2) manual policy review creates bottlenecks in the submission workflow; and (3) existing TEE platforms provide only platform-level attestation with no per-execution proof binding specific code to specific datasets. Epsilon adopts a zero-trust model: no component outside the enclave is trusted, enabling secure cross-institutional data analysis without requiring institutions to share raw data. Epsilon introduces Archetypes, a bring-your-own-data mechanism by which researchers link their datasets without persistent data transfer. Only database credentials are stored, in an encrypted vault; data is not persisted on platform storage and is processed ephemerally within the TEE. An automated policy pre-filtering layer screens submissions before human review. A Verification Center extends standard TEE platform attestation with per-execution dataset and code binding, where the enclave passes a hash bundle (code, data, output, timestamp) to the Nitro Secure Module, which signs it as part of the hardware attestation document, producing portable verification receipts. Source code, SDK, and research templates are available on GitHub.¹

Original language	English
Title of host publication	SysTEX'26 - Proceedings of the 2026 9th Workshop on System Software for Trusted Execution
Editors	Edlira Dushku, Adrien Ghosn
Place of Publication	New York NY USA
Publisher	Association for Computing Machinery (ACM)
Pages	78-85
Number of pages	8
ISBN (Electronic)	9798400726071
DOIs	https://doi.org/10.1145/3805690.3805733
Publication status	Published - 2026
Event	Workshop on System Software for Trusted Execution 2026 - Edinburgh, United Kingdom Duration: 27 Apr 2026 → 27 Apr 2026 Conference number: 9th https://dl.acm.org/doi/proceedings/10.1145/3805690 (Proceedings) https://systex-workshop.github.io/2026/ (Website)

Conference

Conference	Workshop on System Software for Trusted Execution 2026
Abbreviated title	SysTEX 2026
Country/Territory	United Kingdom
City	Edinburgh
Period	27/04/26 → 27/04/26
Internet address	https://dl.acm.org/doi/proceedings/10.1145/3805690 (Proceedings) https://systex-workshop.github.io/2026/ (Website)

Keywords

Confidential Computing
Research Data Infrastructure
Trusted Execution Environments
Verification Center
Zero-trust

Access to Document

10.1145/3805690.3805733Licence: CC BY

785860379-oaFinal published version, 2.48 MBLicence: CC BY

Cite this

Khajiev, N., Puussaar, A., Chu, L. S., Olivier, P., Soon, L. K., & Varghese, D. (2026). Epsilon: A Bring-Your-Own-Data Research Platform with Trusted Verification. In E. Dushku, & A. Ghosn (Eds.), SysTEX'26 - Proceedings of the 2026 9th Workshop on System Software for Trusted Execution (pp. 78-85). Association for Computing Machinery (ACM). https://doi.org/10.1145/3805690.3805733

@inproceedings{61ba3e2b1c7e47aeb92068f01e99aacd,

title = "Epsilon: A Bring-Your-Own-Data Research Platform with Trusted Verification",

abstract = "We present Epsilon, an open-source platform for analyzing sensitive research data with per-execution verification. Epsilon addresses three practical barriers faced by researchers using Trusted Research Environments (TREs): (1) researchers experience challenges in using their own datasets without uploading data to platform infrastructure; (2) manual policy review creates bottlenecks in the submission workflow; and (3) existing TEE platforms provide only platform-level attestation with no per-execution proof binding specific code to specific datasets. Epsilon adopts a zero-trust model: no component outside the enclave is trusted, enabling secure cross-institutional data analysis without requiring institutions to share raw data. Epsilon introduces Archetypes, a bring-your-own-data mechanism by which researchers link their datasets without persistent data transfer. Only database credentials are stored, in an encrypted vault; data is not persisted on platform storage and is processed ephemerally within the TEE. An automated policy pre-filtering layer screens submissions before human review. A Verification Center extends standard TEE platform attestation with per-execution dataset and code binding, where the enclave passes a hash bundle (code, data, output, timestamp) to the Nitro Secure Module, which signs it as part of the hardware attestation document, producing portable verification receipts. Source code, SDK, and research templates are available on GitHub.1",

keywords = "Confidential Computing, Research Data Infrastructure, Trusted Execution Environments, Verification Center, Zero-trust",

author = "Nizomjon Khajiev and Aare Puussaar and Chu, \{Lee Shen\} and Patrick Olivier and Soon, \{Lay Ki\} and Delvin Varghese",

note = "Publisher Copyright: {\textcopyright} 2026 Copyright held by the owner/author(s).; Workshop on System Software for Trusted Execution 2026, SysTEX 2026 ; Conference date: 27-04-2026 Through 27-04-2026",

year = "2026",

doi = "10.1145/3805690.3805733",

language = "English",

pages = "78--85",

editor = "Edlira Dushku and Adrien Ghosn",

booktitle = "SysTEX'26 - Proceedings of the 2026 9th Workshop on System Software for Trusted Execution",

publisher = "Association for Computing Machinery (ACM)",

address = "United States of America",

url = "https://dl.acm.org/doi/proceedings/10.1145/3805690, https://systex-workshop.github.io/2026/",

}

Khajiev, N, Puussaar, A, Chu, LS, Olivier, P , Soon, LK & Varghese, D 2026, Epsilon: A Bring-Your-Own-Data Research Platform with Trusted Verification. in E Dushku & A Ghosn (eds), SysTEX'26 - Proceedings of the 2026 9th Workshop on System Software for Trusted Execution. Association for Computing Machinery (ACM), New York NY USA, pp. 78-85, Workshop on System Software for Trusted Execution 2026, Edinburgh, United Kingdom, 27/04/26. https://doi.org/10.1145/3805690.3805733

Epsilon: A Bring-Your-Own-Data Research Platform with Trusted Verification. / Khajiev, Nizomjon; Puussaar, Aare; Chu, Lee Shen et al.
SysTEX'26 - Proceedings of the 2026 9th Workshop on System Software for Trusted Execution. ed. / Edlira Dushku; Adrien Ghosn. New York NY USA: Association for Computing Machinery (ACM), 2026. p. 78-85.

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research

TY - GEN

T1 - Epsilon

T2 - Workshop on System Software for Trusted Execution 2026

AU - Khajiev, Nizomjon

AU - Puussaar, Aare

AU - Chu, Lee Shen

AU - Olivier, Patrick

AU - Soon, Lay Ki

AU - Varghese, Delvin

N1 - Conference code: 9th

PY - 2026

Y1 - 2026

N2 - We present Epsilon, an open-source platform for analyzing sensitive research data with per-execution verification. Epsilon addresses three practical barriers faced by researchers using Trusted Research Environments (TREs): (1) researchers experience challenges in using their own datasets without uploading data to platform infrastructure; (2) manual policy review creates bottlenecks in the submission workflow; and (3) existing TEE platforms provide only platform-level attestation with no per-execution proof binding specific code to specific datasets. Epsilon adopts a zero-trust model: no component outside the enclave is trusted, enabling secure cross-institutional data analysis without requiring institutions to share raw data. Epsilon introduces Archetypes, a bring-your-own-data mechanism by which researchers link their datasets without persistent data transfer. Only database credentials are stored, in an encrypted vault; data is not persisted on platform storage and is processed ephemerally within the TEE. An automated policy pre-filtering layer screens submissions before human review. A Verification Center extends standard TEE platform attestation with per-execution dataset and code binding, where the enclave passes a hash bundle (code, data, output, timestamp) to the Nitro Secure Module, which signs it as part of the hardware attestation document, producing portable verification receipts. Source code, SDK, and research templates are available on GitHub.1

AB - We present Epsilon, an open-source platform for analyzing sensitive research data with per-execution verification. Epsilon addresses three practical barriers faced by researchers using Trusted Research Environments (TREs): (1) researchers experience challenges in using their own datasets without uploading data to platform infrastructure; (2) manual policy review creates bottlenecks in the submission workflow; and (3) existing TEE platforms provide only platform-level attestation with no per-execution proof binding specific code to specific datasets. Epsilon adopts a zero-trust model: no component outside the enclave is trusted, enabling secure cross-institutional data analysis without requiring institutions to share raw data. Epsilon introduces Archetypes, a bring-your-own-data mechanism by which researchers link their datasets without persistent data transfer. Only database credentials are stored, in an encrypted vault; data is not persisted on platform storage and is processed ephemerally within the TEE. An automated policy pre-filtering layer screens submissions before human review. A Verification Center extends standard TEE platform attestation with per-execution dataset and code binding, where the enclave passes a hash bundle (code, data, output, timestamp) to the Nitro Secure Module, which signs it as part of the hardware attestation document, producing portable verification receipts. Source code, SDK, and research templates are available on GitHub.1

KW - Confidential Computing

KW - Research Data Infrastructure

KW - Trusted Execution Environments

KW - Verification Center

KW - Zero-trust

UR - https://www.scopus.com/pages/publications/105039422573

U2 - 10.1145/3805690.3805733

DO - 10.1145/3805690.3805733

M3 - Conference Paper

AN - SCOPUS:105039422573

SP - 78

EP - 85

BT - SysTEX'26 - Proceedings of the 2026 9th Workshop on System Software for Trusted Execution

A2 - Dushku, Edlira

A2 - Ghosn, Adrien

PB - Association for Computing Machinery (ACM)

CY - New York NY USA

Y2 - 27 April 2026 through 27 April 2026

ER -

Epsilon: A Bring-Your-Own-Data Research Platform with Trusted Verification

Abstract

Conference

Keywords

Access to Document

Other files and links

Cite this