- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello,
I've seen that Xeon Ice Lake CPU supports up to 1 Terabyte enclave much larger than original 256 Megabytes.
I would you like to know how Intel support that huge size? Are there any significant changes? I'd appreciate it if you may share any documents or give me a few pointers on where I could get more information regarding this problem.
Hope you well.
Regards,
Mingyi
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Mingyi,
The main change that enabled is a larger EPC is that SGX went from using the Memory Encryption Engine (MEE), which uses on-die space for a Merkle Tree (which doesn’t expand easily), to using AES-XTS. This paper provides much more detail: https://www.intel.com/content/dam/www/public/us/en/documents/white-papers/supporting-intel-sgx-on-mulit-socket-platforms.pdf
This link says a bit about it also:
To clarify, that’s 1TB for a 2 socket system; max per CPU is 512GB.
Sincerely,
Jesus G.
Intel Customer Support
Link Copied
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Mingyi,
The main change that enabled is a larger EPC is that SGX went from using the Memory Encryption Engine (MEE), which uses on-die space for a Merkle Tree (which doesn’t expand easily), to using AES-XTS. This paper provides much more detail: https://www.intel.com/content/dam/www/public/us/en/documents/white-papers/supporting-intel-sgx-on-mulit-socket-platforms.pdf
This link says a bit about it also:
To clarify, that’s 1TB for a 2 socket system; max per CPU is 512GB.
Sincerely,
Jesus G.
Intel Customer Support
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This thread has been marked as answered and Intel will no longer monitor this thread. If you want a response from Intel in a follow-up question, please open a new thread.
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page