EnGarde: Mutually-Trusted Inspection of SGX Enclaves

Hai Nguyen, Vinod Ganapathy.

Proceedings of the 37th IEEE International Conference on Distributed Computing Systems (ICDCS 2017); pages 2458--2465; Atlanta, Georgia, USA; June 5-8, 2017.

Intel’s SGX architecture allows cloud clients to create enclaves, whose contents are cryptographically protected by the hardware even from the cloud provider. While this feature protects the confidentiality and integrity of the client’s enclave content, it also means that enclave content is completely opaque to the cloud provider. Thus, the cloud provider is unable to enforce policy compliance (e.g., against SLAs) on enclaves. In this paper, we introduce EnGarde, a system that allows cloud providers to ensure SLA compliance on enclave content.

In EnGarde, cloud providers and clients mutually agree upon a set of policies that the client’s enclave content must satisfy. EnGarde executes when the client provisions the enclave, ensuring that only policy-compliant content is loaded into the enclave. EnGarde is able to achieve its goals without compromising the security guarantees offered by the SGX, and imposes no runtime overhead on the execution of enclave code. We have demonstrate the utility of EnGarde by using it to enforce a variety of security policies on enclave content.

Paper: [ PDF ] (© IEEE)
Slides: [ PDF | Powerpoint ]
DOI: [ 10.1109/ICDCS.2017.35 ]

Papers page