Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.
1453 Discussions

How to Protect images and files using SGX

Sam5
New Contributor I
‎08-25-2016 02:57 AM
555 Views
Solved Jump to solution

Hi,

Is it possible to use file descriptor for any kind of file operation and carrying the image from one system to another via SGX?

-Thanks

0 Kudos
1 Solution
Surenthar_S_Intel
Employee
‎08-25-2016 03:17 AM
555 Views
Solved Jump to solution

Hi Sam,

For file i/O operations, you need to define file I/O APIs as OCALLs in the EDL file and include additional declarations in a header file, which can be included in the EDL file. If you want to carry image/files from one machine to another, you cannot use the sealing API that the SGX provides. Instead, enclaves running on both machines need to agreed on a shared key or have a key provisioned by a 3rd party.

-Surenthar

 

View solution in original post

0 Kudos
Copy link

Link Copied

2 Replies
Surenthar_S_Intel
Employee
‎08-25-2016 03:17 AM
556 Views
Solved Jump to solution

Hi Sam,

For file i/O operations, you need to define file I/O APIs as OCALLs in the EDL file and include additional declarations in a header file, which can be included in the EDL file. If you want to carry image/files from one machine to another, you cannot use the sealing API that the SGX provides. Instead, enclaves running on both machines need to agreed on a shared key or have a key provisioned by a 3rd party.

-Surenthar

 

0 Kudos
Copy link
Sam5
New Contributor I
‎08-25-2016 04:08 AM
555 Views
Solved Jump to solution

Thanks for you detailed Information

0 Kudos
Copy link
Reply

Community support is provided during standard business hours (Monday to Friday 7AM - 5PM PST). Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.