Introducing Graphene-ng: running arbitrary payloads in SGX enclaves

Golem is a global, open source, decentralized supercomputer that anyone can access
User avatar
RamboLambo
Posts: 417
Joined: Thu Mar 29, 2018 9:36 am

Introducing Graphene-ng: running arbitrary payloads in SGX enclaves

Sat Jun 30, 2018 2:54 pm

Enclave-based computing

Recently the term “enclave-based” computing has been used increasingly often to describe a form of security container which allows for computations which are protected from the host, such as the external operating system, hypervisor, or even interference from the low-level firmware such as the BIOS/SMM/UEFI.

This is, naturally, in stark contrast to the usual definition of a security container as used today (and as implemented by VMs of various sorts, Linux/Docker containers, etc), which implies protection of the host from whatever code runs inside the container. In other words: the enclaves and the containers represent two different, complementary goals, and it is normally envisioned that both will be deployed at the same time.


https://blog.golemproject.net/introduci ... 3f219447a5

Return to “Golem (GNT)”