Community
cancel
Showing results for 
Search instead for 
Did you mean: 
SAM_R_2
Beginner
49 Views

Signature Padding in SGX

Jump to solution

Hi,

From this white paper : https://software.intel.com/en-us/articles/innovative-technology-for-cpu-based-attestation-and-sealin...

If you look at Table 2-2 in the reference, it mentions that the padding in the SECS is derived from the signature (presumably from the SIGSTRUCT).

- Thanks

0 Kudos

Accepted Solutions
49 Views

Hi Sam,

Signature Padding is included as an additional defense against padding attacks on the SIGSTRUCT signature. The signature padding being included in SGX keys results in the key being bound to a correctly composed signature over the enclave’s SIGSTRUCT and not key that signed the contents of SIGSTRUCT [MRSIGNER] or ISVSVN. 

Thanks and Regards,
Surenthar Selvaraj

View solution in original post

2 Replies
50 Views

Hi Sam,

Signature Padding is included as an additional defense against padding attacks on the SIGSTRUCT signature. The signature padding being included in SGX keys results in the key being bound to a correctly composed signature over the enclave’s SIGSTRUCT and not key that signed the contents of SIGSTRUCT [MRSIGNER] or ISVSVN. 

Thanks and Regards,
Surenthar Selvaraj

View solution in original post

SAM_R_2
Beginner
49 Views

Thanks for your info....