Intel® Software Guard Extensions (Intel® SGX)
Use hardware-based isolation and memory encryption to provide more code protection in your solutions.

SGX BIOS for preboot

SAM_R_2
Beginner
436 Views

Hi,

If we build a special algorithm in the BIOS for preboot., Can I add SGX in that?  If yes, what step and tool chain to do it?

-Thanks

0 Kudos
1 Solution
Surenthar_S_Intel
436 Views

Hi Sam,

We are not supporting SGX in Pre-Boot Environment(UEFI/BIOS). SGX is and was designed to be an Application TEE (which implies an OS is resident). We haven't seen usage models in the pre-boot environment that have justified the effort to resolve some of the difficulties in enabling in Pre-boot, allowing residence from boot, or resetting the TCB recovery infrastructure (which is predominantly hidden from most users) when transitioning between UEFI and OS.

Thanks and Regards,
Surenthar Selvaraj

View solution in original post

2 Replies
Surenthar_S_Intel
437 Views

Hi Sam,

We are not supporting SGX in Pre-Boot Environment(UEFI/BIOS). SGX is and was designed to be an Application TEE (which implies an OS is resident). We haven't seen usage models in the pre-boot environment that have justified the effort to resolve some of the difficulties in enabling in Pre-boot, allowing residence from boot, or resetting the TCB recovery infrastructure (which is predominantly hidden from most users) when transitioning between UEFI and OS.

Thanks and Regards,
Surenthar Selvaraj

SAM_R_2
Beginner
436 Views

Thanks Surenthar

Reply