Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.
1453 Discussions

Question about Quote Enclave

hyunsoo
New Contributor I
‎11-26-2020 12:59 AM
1,210 Views
Solved Jump to solution

Theorically, Launch Enclave generates report and is conveyed to Quote Enclave. QE converts report to quote structure. In the RA example(https://github.com/intel/sgx-ra-sample), there is no related code with QE handling. I'm guessing that QE is initialized(launched) by calling `sgx_init_quote` and get the quote by calling `sgx_get_quote`. 

So, the question is how QE is launched, and who is responsible for it?

 

Thank you

0 Kudos
1 Solution
JesusG_Intel
Moderator
‎12-07-2020 10:06 AM
1,145 Views
Solved Jump to solution
In response to hyunsoo

Hello Hyunsoo,

The Quoting Enclave is installed with the Platform Software. The user never calls it directly. It is called and scheduled by the AESM. In other words, the user does not have to worry about calling the QE; it happens automatically.

Sincerely,

Jesus G.
Intel Customer Support

View solution in original post

In response to hyunsoo
0 Kudos
Copy link

Link Copied

5 Replies
JesusG_Intel
Moderator
‎12-01-2020 01:33 PM
1,186 Views
Solved Jump to solution

Hello hyunsoo,

The Quoting Enclave is one of the architectural enclaves that gets installed with the Intel SGX Platforms Software (PSW). Specifically, the QE, and other architectural enclaves, are managed by the Architectural Enclave Service Manager (AESM).

You can find the code for the PSW here: https://github.com/intel/linux-sgx/tree/master/psw

Sincerely,

Jesus G.

Intel Customer Support

 

0 Kudos
Copy link
hyunsoo
New Contributor I
‎12-05-2020 05:17 AM
1,160 Views
Solved Jump to solution
In response to JesusG_Intel

There is no calling a function related to QE handling in RA example(https://github.com/intel/sgx-ra-sample). I'm asking how QE was launched even if we never called directly. And how it is managed(scheduled)?

Thank you

In response to JesusG_Intel
0 Kudos
Copy link
JesusG_Intel
Moderator
‎12-07-2020 10:06 AM
1,146 Views
Solved Jump to solution
In response to hyunsoo

Hello Hyunsoo,

The Quoting Enclave is installed with the Platform Software. The user never calls it directly. It is called and scheduled by the AESM. In other words, the user does not have to worry about calling the QE; it happens automatically.

Sincerely,

Jesus G.
Intel Customer Support

In response to hyunsoo
0 Kudos
Copy link
JesusG_Intel
Moderator
‎12-04-2020 10:08 AM
1,172 Views
Solved Jump to solution

Hello Hyunsoo,


Does this answer your questions regarding the Quoting Enclave?


Sincerely,

Jesus G.

Intel Customer Support


0 Kudos
Copy link
JesusG_Intel
Moderator
‎12-08-2020 07:51 AM
1,133 Views
Solved Jump to solution

This thread has been marked as answered and Intel will no longer monitor this thread. If you want a response from Intel in a follow-up question, please open a new thread.


0 Kudos
Copy link
Reply

Community support is provided during standard business hours (Monday to Friday 7AM - 5PM PST). Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.