Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

Protected File System for Linux SDK

Nazmus_S_
Beginner
1,489 Views

Hi,

As far as I know, at first, Protected File System (FS) feature  came with Windows SDk 1.7. At that time, this feature was unavailable in Linux SDK. 

Recently, I checked the Linux SDK 1.9 release note and found the following statement under What's New section:

"Support for Protected File System – a basic subset of the regular ‘C’ file API for Intel SGX enclaves that provides files with both confidentiality and integrity protection ".

Apparently, Linux SDK 1.9 offers protected FS feature. If so, is there any sample project available?

I am aware that, for Windows SDK,  there is a sample project here: https://software.intel.com/en-us/articles/overview-of-intel-protected-file-system-library-using-software-guard-extensions

0 Kudos
5 Replies
Shivananda_H_Intel
1,489 Views

Hi

Currently we do not have  sgx-linux sample project demonstrating protect filesystem API's .

Regards

Shivananda

0 Kudos
Nazmus_S_
Beginner
1,489 Views

Hi Shivananda,

Thanks for the update.

 

0 Kudos
you_w_
New Contributor III
1,489 Views

Hi Nazmus S

I just write a demo which does the same thing as the demo you mentioned. If you need find it  here .https://github.com/light1021/SGX-protected-fs-demo

Regards 

you

0 Kudos
Nazmus_S_
Beginner
1,489 Views

Thanks a lot You. W.

I am looking into it. Very useful.

Nazmus

0 Kudos
you_w_
New Contributor III
1,489 Views

Hi Nazmus S:

I am glad if this demo is helpful. The read function is a little different to the windows demo. I use "[count=size]" instead of "[string]", because when I use string as the windows demo, I always get the wrong content in untrusted code.

Regards

you

0 Kudos
Reply