Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

SGX BIOS for preboot

SAM_R_2
Beginner
1,297 Views

Hi,

If we build a special algorithm in the BIOS for preboot., Can I add SGX in that?  If yes, what step and tool chain to do it?

-Thanks

0 Kudos
1 Solution
Surenthar_S_Intel
1,297 Views

Hi Sam,

We are not supporting SGX in Pre-Boot Environment(UEFI/BIOS). SGX is and was designed to be an Application TEE (which implies an OS is resident). We haven't seen usage models in the pre-boot environment that have justified the effort to resolve some of the difficulties in enabling in Pre-boot, allowing residence from boot, or resetting the TCB recovery infrastructure (which is predominantly hidden from most users) when transitioning between UEFI and OS.

Thanks and Regards,
Surenthar Selvaraj

View solution in original post

0 Kudos
2 Replies
Surenthar_S_Intel
1,298 Views

Hi Sam,

We are not supporting SGX in Pre-Boot Environment(UEFI/BIOS). SGX is and was designed to be an Application TEE (which implies an OS is resident). We haven't seen usage models in the pre-boot environment that have justified the effort to resolve some of the difficulties in enabling in Pre-boot, allowing residence from boot, or resetting the TCB recovery infrastructure (which is predominantly hidden from most users) when transitioning between UEFI and OS.

Thanks and Regards,
Surenthar Selvaraj

0 Kudos
SAM_R_2
Beginner
1,297 Views

Thanks Surenthar

0 Kudos
Reply