Secure Enclave has two key policies.
1. MRENCLAVE
2. MRSIGNER.
The later states that the data of one enclave can be read by another enclave, only if the other enclave is from the same software developer on the same system. If the other enclave is compromised or hacked by any malicious software, the CPU detects it and stops the enclave to load. How does the CPU gets to know that the enclave is compromised or not?
Enclaves include a self-signed certificate from the enclave author, also known as the Enclave Signature (SIGSTRUCT). The enclave signature contains information that allows the Intel SGX architecture to detect whether any portion of the enclave file has been tampered with.
https://software.intel.com/en-us/node/702979
Christopher Robles this helped a lot. Only need to confirm what this phrase means " When the enclave code/data pages are placed inside the EPC, the CPU calculates the enclave measurement and stores this value in the MRENCLAVE register. Then the CPU compares the content of MRENCLAVE against the enclave measurement value in SIGSTRUCT. Only if they match with each other, the CPU will allow the enclave to be initialized. "
Is the comparison made on the order and position of contents in the EPC and MRENCLAVE?
- Badges
- Science topic