Arbitrary computations with SGX in Golem

SGX

Intel Software Guard Extensions

REMOTE ATTESTATION

REMOTE attestation

sgx specific apps 

 

vs

 

ARBITRARY, UNMODIFIED APPS

GRAPHENE

A library OS for Linux multi-process applications, with Intel SGX support

tcb vs attack surface

Trusted computing base

Attack surface of a software environment

  • The set of all hardware, firmware, and/or software components that are critical to the security of a computer system
  • The sum of the different points (the 'attack vectors') where an unauthorized user (the 'attacker') can try to enter data to or extract data from the environment

-WIKIPEDIA

INTEL I7-7500U CPU (4 THREADS)

HASHCASH

EFFICIENCY

Compute-intensive algorithm

INTEL I7-7500U CPU (4 THREADS)

SEQUENTIAL ACCESS PATTERN

EFFICIENCY

RANDOM ACCESS PATTERN

Memory-intensive algorithms

Graphene nodes in golem

Providers with SGX nodes

Concent using SGX backends

future ideas

Launch Enclave Liberation

IAS Liberation

01

02

future ideas

Launch Enclave Liberation

IAS Liberation

01

02

Secure GPU for enclaves

03

Thank you

GOLEM.NETWORK

For the help with this presentation thanks to:


Substantial knowledge: Joanna Rutkowska, Michał Kowalczyk, Aleksandra Skrzypczak

 

Design: Natalia Mroszczyk

Arbitrary computations with SGX in Golem - EDCON

By The Golem Project

Arbitrary computations with SGX in Golem - EDCON

  • 628
Loading comments...

More from The Golem Project