[Info-vax] September 6, 2016 - new Roadmap and State of the Port updates now on VSI website

johnwallace4 at yahoo.co.uk johnwallace4 at yahoo.co.uk
Wed Sep 7 15:49:53 EDT 2016


On Wednesday, 7 September 2016 20:20:48 UTC+1, Simon Clubley  wrote:
> On 2016-09-07, Stephen Hoffman <seaohveh at hoffmanlabs.invalid> wrote:
> > On 2016-09-07 18:51:27 +0000, Simon Clubley said:
> >
> >> I wonder what "Enhanced Application Isolation and Management" means ?
> >> Is it SELinux MAC type security or more a chroot/jail type security ?
> >
> > Intel SGX most likely, given the time frame.
> > https://en.wikipedia.org/wiki/Software_Guard_Extensions
> > https://software.intel.com/en-us/blogs/2013/09/26/protecting-application-secrets-with-intel-sgx 
> >
> 
> Interesting. Thanks for the links, Stephen.
> 
> Simon.
> 
> -- 
> Simon Clubley, clubley at remove_me.eisner.decus.org-Earth.UFP
> Microsoft: Bringing you 1980s technology to a 21st century world

Are readers aware of/familiar with ARM TrustZone? You may
have a headstart on SGX if you are.

Perhaps have a look at Cambridge University Computer Lab's
"Introduction to Trusted Execution Environments" which covers
a selection of TEEs from ARM, Intel (SGX and TPM), etc.
http://sec.cs.ucl.ac.uk/users/smurdoch/talks/rhul14tee.pdf
Topics:
* Understand what a TEE is and why it is of interest
• Appreciate the range of standards and products that offer TEE capability
• Be able to describe the basic building blocks of a typical TEE
• Compare the attack resistance of a TEE product w.r.t. security evaluated 
smart cards
• Contrast ownership and management issues w.r.t. a traditional smart 
card/SIM model

Total 34 slides.

Enjoy.



More information about the Info-vax mailing list