- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello,
I have a basic question about syscall and ocall.
As I know, system call is prohibited inside the enclave since the operating system is untrusted.
But the developers still can define (insecure) ocall interface, then anyhow system call can be used (indirectly).
My question is, what is the difference, in terms of security, between (1) calling the system call directly inside the enclave and (2) calling ocall function that indirectly calls system call??
The both seems equally insecure to me. What am I missing?
Thank you.
Link Copied
0 Replies
Reply
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page