- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi..
I have a SGX question
If I got a algorithm lib/dll whcih is non-SGX coding and I don't have the source code.
I plan to write a SGX function and call this non-SGX API lib.
Is non-SGX lib protected by SGX?
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi KT,
No, it will not provide any SGX security for non SGX lib. Because the non SGX lib stored on untrusted memory.
Thanks and Reagrds,
Surenthar Selvaraj
Link Copied
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi KT,
No, it will not provide any SGX security for non SGX lib. Because the non SGX lib stored on untrusted memory.
Thanks and Reagrds,
Surenthar Selvaraj
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Surenthar
Thanks for your reply.
So there are no way to make non-sgx lib be proercted by SGX without re-writing the lib with SGX?
If answer is no, I will ask the vendor whcich provide our algorithm to re-write it under SGX environment.
Someone tell me that ARM; trustzone can do it. That's why we think it maybe ok to wrap the non-sgx lib in SGX code.
Thanks KT
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello KT,
The untrusted library functions can only be called from application code - outside the enclave. The trusted libraries are static libraries that link with the enclave binary. The Intel® Software Guard Extensions Evaluation SDK ships with several trusted libraries that cover domains such as standard C/C++ libraries, synchronization, encryption and more. These functions/objects can only be used from within the enclave.
Note: Do not link the enclave with any untrusted library including C/C++ standard libraries. This action will either fail the enclave signing process or cause a runtime failure due to the use of restricted instructions.
In your case please do rewrite the algorithm with in the SXG environment.
Regards,
Muthu
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Muthu,
Thansk for your detail explain. really appreciate.
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page