What is a PSE Session and How Does it Work?

Intel® Software Guard Extensions (Intel® SGX)

Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

What is a PSE Session and How Does it Work?

2,120 Views

Hi!

Could you help me understand what is a PSE session? So far my understanding is that it is used to manage Monotonic Counter and Trusted Time Service. But it actually appeared in remote attestation sample code during key provisioning, even though on the enclave developer's side there does seem to have a monotonic counter or trusted time service involved. In terms of the sgx_ra_init function, it has a b_pse variable to mandate if PSE session should be created or not. Could you share some comments on how to decide that?

Essentially, could you help me figure out what is the functionality of a PSE session, and what is the benefit/risk with or without it?

Thank you so much!

Link Copied

0 Replies

Community support is provided Monday to Friday. Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.