Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

What is a PSE Session and How Does it Work?



Could you help me understand what is a PSE session? So far my understanding is that it is used to manage Monotonic Counter and Trusted Time Service. But it actually appeared in remote attestation sample code during key provisioning, even though on the enclave developer's side there does seem to have a monotonic counter or trusted time service involved. In terms of the sgx_ra_init function, it has a b_pse variable to mandate if PSE session should be created or not. Could you share some comments on how to decide that?

Essentially, could you help me figure out what is the functionality of a PSE session, and what is the benefit/risk with or without it?

Thank you so much!

0 Kudos
0 Replies