Community
cancel
Showing results for 
Search instead for 
Did you mean: 
KT_L_
Beginner
92 Views

Use SGX to pack non-SGX lib

Jump to solution

Hi..

I have a SGX question

If I got a algorithm lib/dll whcih is non-SGX coding and I don't have the source code.

I plan to write a SGX  function and call this non-SGX  API lib.

Is non-SGX lib protected by SGX?

 

Thanks

 

 

0 Kudos
1 Solution
92 Views

Hi KT,

No, it will not provide any SGX security for non SGX lib. Because the non SGX lib stored on untrusted memory.

Thanks and Reagrds,
Surenthar Selvaraj

View solution in original post

4 Replies
93 Views

Hi KT,

No, it will not provide any SGX security for non SGX lib. Because the non SGX lib stored on untrusted memory.

Thanks and Reagrds,
Surenthar Selvaraj

View solution in original post

KT_L_
Beginner
92 Views

Hi Surenthar

Thanks for your reply.

So there are no way to make non-sgx lib be proercted by SGX without re-writing the lib with SGX?

If answer is no, I will ask the vendor whcich provide our algorithm to re-write it under SGX environment.

Someone tell me that ARM; trustzone can do it. That's why we think it maybe ok to wrap the non-sgx lib in SGX code.

Thanks  KT

 

92 Views

 

Hello KT,

 

The untrusted library functions can only be called from application code - outside the enclave. The trusted libraries are static libraries that link with the enclave binary. The Intel® Software Guard Extensions Evaluation SDK ships with several trusted libraries that cover domains such as standard C/C++ libraries, synchronization, encryption and more. These functions/objects can only be used from within the enclave.

 

Note: Do not link the enclave with any untrusted library including C/C++ standard libraries. This action will either fail the enclave signing process or cause a runtime failure due to the use of restricted instructions.

 

In your case please do rewrite the algorithm with in the SXG environment.

 

Regards,

Muthu

KT_L_
Beginner
92 Views

Hi Muthu,

Thansk for your detail explain. really appreciate.

Reply