Intel® Software Guard Extensions (Intel® SGX) Support for Dynamic Memory Management Inside an Enclave

Frank McKeen,Ilya Alexandrovich,Ittai Anati,Dror Caspi,Simon P. Johnson,Rebekah M. Leslie-Hurd,Carlos V. Rozas

Intel® Software Guard Extensions (Intel® SGX) Support for Dynamic Memory Management Inside an Enclave

2016

Frank McKeen
Ilya Alexandrovich
Ittai Anati
Dror Caspi
Simon P. Johnson
Rebekah M. Leslie-Hurd
Carlos V. Rozas

We introduce Intel® Software Guard Extensions (Intel® SGX) SGX2 which extends the SGX instruction set to include dynamic memory management support for enclaves. Intel® SGX is a subset of the Intel Architecture Instruction Set [1]. SGX1 allows an application developer to build a trusted environment and execute inside that space. However SGX1 imposes limitations regarding memory commitment and reuse of enclave memory. The software developer is required to allocate all memory at enclave instantiation. This paper describes new instructions and programming models to extend support for dynamic memory management inside an enclave.

Keywords:

Software
Reuse
Programming paradigm
Parallel computing
Guard (information security)
Architecture
Dynamic random-access memory
Instruction set
Computer science
dynamic memory management
Operating system
intel architecture

Correction
Source
Cite
Save
Machine Reading By IdeaReader

References

138

Citations