Offsite Link

A Practical Library Operating System for Unmodified Applications

This paper disproves assumptions that unmodified applications can cause poor performance and a larger trusted computing base while running on Intel® Software Guard Extensions.
Authored by admin Last updated on 03/27/2019 - 16:09
Offsite Link

Secure Linux* Containers Managed By Docker*

The Secure Linux* Container Environment (SCONE) is a mechanism for Docker* that uses the Intel® Software Guard Extensions trusted execution to protect container processes from outside attacks.
Authored by admin Last updated on 03/28/2019 - 11:24
Offsite Link

Panoply: Low-Trusted Computing Base (TCB) Linux* Applications with Intel® SGX Enclaves (PDF)

In this paper, we present a new system called Panoply which bridges the gap between the Intel® Software Guard Extensions (Intel® SGX)-native abstractions and the standard OS abstractions which feat

Authored by admin Last updated on 04/02/2019 - 11:35
Offsite Link

Panoply: Low-TCB Linux* Applications with Intel® SGX Enclaves (Project Site)

We present a new system called Panoply which bridges the gap between the Intel® Software Guard Extensions (Intel® SGX)-native abstractions and the standard OS abstractions which feature-rich, commo

Authored by admin Last updated on 02/01/2019 - 08:51
Offsite Link

A Study of Robust Synchronous Peer-to-Peer Primitives That Use Enclaves

BitTorrent* and Bitcoin* are susceptible to attacks from byzantine nodes that join as peers. Learn how to protect them with a synchronous network where peer nodes have CPUs equipped with Intel® Software Guard Extensions.
Authored by admin Last updated on 03/28/2019 - 10:14
Offsite Link

Establish Mutually Trusted Channels for Remote Sensing Devices

Remote and unattended sensing devices are rapidly deployed in sensitive environments. Features in trusted execution environments (TEE), such as Intel® Software Guard Extensions, provide trusted mechanisms for data.
Authored by admin Last updated on 03/27/2019 - 15:52
Offsite Link

Build Critical Applications Using Microservices

Learn formal methods that ensure the foundation (a microkernel-based system) for critical applications is correct.

Authored by admin Last updated on 03/27/2019 - 11:00
Offsite Link

Isolate Operating System Components

Intel® Software Guard Extensions was not designed to work in kernel mode. But, Linux* kernel functionality can be wrapped within its enclaves by moving parts to a user space.
Authored by admin Last updated on 03/27/2019 - 16:32