Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Criston__Anna
New Contributor I
212 Views

Remote Attestation Hybrid

Jump to solution
Hi! I was wondering if there is any way of passing data from a not SGX-capable machine to an SGX-capable machine enclave without having the data go through the untrusted memory of the SGX machine.
I've searched around but could not find any projects on that. I know that remote attestation works for 2 SGX-capable machines to pass data from trusted memory to trusted memory. Is there any way to pass data from the untrusted memory of a not SGX-capable machine directly to the trusted memory of an SGX-capable machine (and vice versa)?

Thank you.
0 Kudos
1 Solution
ChrisB_Intel
Moderator
192 Views

A relying party/remote server (not required at all to be SGX enabled) that attests a remote SGX enabled platform/enclave.  It can then set up a secure channel to pass secrets directly in to the enclave memory. The secret is never in the clear between the relying party and the remote SGX enclave. 


Please take a look at the links below:


https://software.intel.com/content/www/us/en/develop/articles/code-sample-intel-software-guard-exten...

https://github.com/intel/sgx-ra-sample



View solution in original post

2 Replies
ChrisB_Intel
Moderator
193 Views

A relying party/remote server (not required at all to be SGX enabled) that attests a remote SGX enabled platform/enclave.  It can then set up a secure channel to pass secrets directly in to the enclave memory. The secret is never in the clear between the relying party and the remote SGX enclave. 


Please take a look at the links below:


https://software.intel.com/content/www/us/en/develop/articles/code-sample-intel-software-guard-exten...

https://github.com/intel/sgx-ra-sample



View solution in original post

JesusG_Intel
Moderator
176 Views

This thread will no longer be monitored since we have provided a solution. If you need any additional information from Intel, please submit a new question.


Reply