Presentation: The Security Challenges & Issues From SGX Practice
Abstract
Intel® Software Guard Extensions (Intel® SGX) provides a trusted execution environment with hardware root of trust, brings powerful capability to build secure applications to solve data security problems. However applying SGX technology correctly and writing secure code are still a challenge.
In this talk, we want to present challenges and issues we saw with applying SGX to protect sensitive data in product. We will broadly discuss open problems including how to write ecall functions correctly, how to avoid potential side channel attack, what are the architecture issues when we apply secure AI with Intel® SGX.
Similar Talks
License Compliance for Your Container Supply Chain
Open Source Engineer @VMware
Nisha Kumar
Exploiting Common iOS Apps’ Vulnerabilities
Software Engineer @Google
Ivan Rodriguez
Securing Software From the Supply Side
Senior Engineering Manager @GitHub
Nickolas Means
Security Culture: Why You Need One and How to Create It
Co-Founder @hello_Elevate
Masha Sedova
Reflecting on a Life Watching Movies and a Career in Security
VP Information Security @Netflix
Jason Chan
Small Is Beautiful: How to Improve Security by Maintaining Less Code
Security Researcher @Google