I saw on the Intel website here that there is an OpenSSL library available for SGX but only on Windows.
Does anyone know if there is also such an extension for Linux SGX SDK?
Asked
Active
Viewed 2,120 times
5
-
According to [Intel® Software Guard Extensions (Intel® SGX) SDK](https://software.intel.com/en-us/sgx-sdk), Ubuntu 14.04 is supported. Maybe you could try visiting the site from a Ubuntu 14 machine. Or, use an extension to change your browser's user agent string. – jww Jan 17 '17 at 01:27
-
I can confirm that this does not work. Same content rendered. – savx2 Jan 17 '17 at 17:33
-
As of 24/Jan/2017 it seems that there is no OpenSSL for Linux. Ref: https://software.intel.com/en-us/comment/1896160#comment-1896160 – savx2 Jan 25 '17 at 01:14
-
Later: _(from SGX wikipedia):_ Both in the 11th and 12th generations of Intel Core processors, SGX is listed as "Deprecated" and thereby not supported anymore. – Zsigmond Lőrinczy Feb 05 '22 at 08:11
3 Answers
4
Linux SGX SSL Crypto Lib has now been open sourced and it's available here: https://github.com/01org/intel-sgx-ssl
savx2
- 1,011
- 2
- 10
- 28
3
I found an alternative solution to OpenSSL namely mbedtls here.
It is available for Linux and Windows and the compiled libraries only need to be linked against the application and enclave.
wasp256
- 5,943
- 12
- 72
- 119
-
-
1Yes it does, and there is also a good example provided for client-sever app with an enclave – wasp256 Jan 18 '17 at 10:04
-1
TaLoS is a TLS library that allows existing applications (with an OpenSSL/LibreSSL interface) to securely terminate their TLS connection inside an Intel SGX enclave. The code is available on GitHub.
There also is a technical report containing details about the architecture and performance results.
Florian
- 302
- 1
- 4
- 12