Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

SGX - EPCM and data structures

BH21
Beginner
892 Views

Hi there,

 

I was wondering where the EPCM and data structures (e.g. PCMD) are actually stored? 

This Linux Kernel doc suggests that the EPCM is a "hardware data structure", does that mean it is stored in a separate component?

Are data structures stored in the EPC itself or a separate region in PRM? 

 

Many thanks.

0 Kudos
5 Replies
KFPW_Intel
Moderator
872 Views

Hi BH21,

 

Thank you for your interest in Intel® SGX.

 

Enclave Page Cache Map (EPCM) is a secure structure used by the processor to track the contents of the Enclave Page Cache (EPC). The contents of enclaves and the associated data structures are stored in the EPC, which is a subset of the Processor Reserved Memory (PRM). Here is the diagram for more information.

 

KFPW_Intel_0-1681887469342.png

 

Meanwhile, Paging Crypto MetaData (PCMD) is used to keep track of crypto meta-data associated with a paged-out page. Combined with PAGEINFO, it provides enough information for the processor to verify, decrypt, and reload a paged-out EPC page. The PCMD is available in the system memory. Refer to the diagram for more information.

KFPW_Intel_1-1681887483835.png

 

Here are the references could be useful for your use cases.

  1. Overview of Intel SGX instructions and datastructures
  2. SGX101 - enclave
  3. Intel® Software Guard Extensions (Intel® SGX)

 

Hope that the information that I provided is useful for you. Let me know if you have any questions. Thank you.

 

Regards,

Ken

 

0 Kudos
KFPW_Intel
Moderator
781 Views

Hi BH21,


I hope the information I provided was helpful to you. Do you need further help with this issue?

 

Please inform us if you have any question regards to this issue.

Thank you.

 

Regards,

Ken


0 Kudos
BH21
Beginner
759 Views

Hi Ken,

 

Thank you for you reply, this makes a lot of sense!

 

Regards,

Brandon

0 Kudos
KFPW_Intel
Moderator
750 Views

Hi BH21,


Great to know the information is useful for you. Please inform us if you have any question regards to this issue.

Thank you.

 

Regards,

Ken


0 Kudos
KFPW_Intel
Moderator
704 Views

Hi BH21,


We have not heard from you in several days so we will no longer monitor this thread. We hope you were able to resolve your issue. Please start a new thread if you need further help.


Regards,

Ken


0 Kudos
Reply