https://community.intel.com/t5/Intel-Software-Guard-Extensions/A-security-concern-about-SGX/m-p/1094434#M934 <P>Hi,</P> <P style="word-wrap: break-word; font-size: 12px;">Section 5 of our&nbsp;<A href="https://software.intel.com/en-us/articles/innovative-instructions-and-software-model-for-isolated-execution" style="cursor: pointer;">whitepaper&nbsp;</A>explains the process for building an enclave. Whilst a Ring0 component&nbsp;executes the instructions, the HW architecture is responsible for the security of the enclave. The measurement created by the HW during this process is inaccessible to the Ring0 component.</P> <P style="word-wrap: break-word; font-size: 12px;">At the end of the build process you have an enclave with a measurement and&nbsp;it then uses the attestation process to allow a verifier to determine that the enclave was built as it required and then to deploy a secret to the enclave.</P> <P style="word-wrap: break-word; font-size: 12px;">Keys used to keep the secret local are also bound to the measurement of the enclave.</P> <P style="word-wrap: break-word; font-size: 12px;">-Surenthar</P> Tue, 22 Nov 2016 11:00:01 GMT Surenthar_S_Intel 2016-11-22T11:00:01Z https://community.intel.com/t5/Intel-Software-Guard-Extensions/A-security-concern-about-SGX/m-p/1094433#M933 <P>Hi</P> <P>As I know, a SGX enclave memory will be encrypted until it is loaded into CPU.</P> <P>The memory will be decrypted by memory controller, it means that the secret message will be loaded into CPU cache as a plaintext, right?</P> <P>If a malicious software or malicious enclave try to flush or desctroy the whole cache line, How does SGX protect the secret in the cache?</P> <P>Is there any document introduce the details about SGX instruction behavior inside CPU?</P> <P>&nbsp;</P> <P>Thanks</P> Tue, 22 Nov 2016 08:27:20 GMT https://community.intel.com/t5/Intel-Software-Guard-Extensions/A-security-concern-about-SGX/m-p/1094433#M933 Changzheng_W_Intel 2016-11-22T08:27:20Z https://community.intel.com/t5/Intel-Software-Guard-Extensions/A-security-concern-about-SGX/m-p/1094434#M934 <P>Hi,</P> <P style="word-wrap: break-word; font-size: 12px;">Section 5 of our&nbsp;<A href="https://software.intel.com/en-us/articles/innovative-instructions-and-software-model-for-isolated-execution" style="cursor: pointer;">whitepaper&nbsp;</A>explains the process for building an enclave. Whilst a Ring0 component&nbsp;executes the instructions, the HW architecture is responsible for the security of the enclave. The measurement created by the HW during this process is inaccessible to the Ring0 component.</P> <P style="word-wrap: break-word; font-size: 12px;">At the end of the build process you have an enclave with a measurement and&nbsp;it then uses the attestation process to allow a verifier to determine that the enclave was built as it required and then to deploy a secret to the enclave.</P> <P style="word-wrap: break-word; font-size: 12px;">Keys used to keep the secret local are also bound to the measurement of the enclave.</P> <P style="word-wrap: break-word; font-size: 12px;">-Surenthar</P> Tue, 22 Nov 2016 11:00:01 GMT https://community.intel.com/t5/Intel-Software-Guard-Extensions/A-security-concern-about-SGX/m-p/1094434#M934 Surenthar_S_Intel 2016-11-22T11:00:01Z