Intel® Software Guard Extensions (SGX) SW Development Guidance for Potential Bounds Check Bypass (CVE-2017-5753) Side Channel Exploits

Submitted: February 12, 2018 Last updated: February 12, 2018
  • File:
    sgx-sdk-developer-guidance-cve-2017-5753.pdf
  • Size:
    0.58 MB
Download

Detailed Description

The SDK is being updated to address instances of “Bounds Check Bypass” [CVE20175753]. Stopping speculative execution in the SDK code is achieved by inserting LFENCE instructions where speculative execution might possibly lead to a secret-disclosing side channel. The following table lists the SDK changes and describes the corresponding bypass. 

Product and Performance Information

1

Performance varies by use, configuration and other factors. Learn more at www.Intel.com/PerformanceIndex.