Article 54GR1 Plundering of crypto keys from ultrasecure SGX sends Intel scrambling again

Plundering of crypto keys from ultrasecure SGX sends Intel scrambling again

by
Dan Goodin
from Ars Technica - All content on (#54GR1)
axe-intel-sgx-800x450.jpg

Enlarge (credit: Aurich Lawson / Getty)

For the past two years, modern CPUs-particularly those made by Intel-have been under siege by an unending series of attacks that make it possible for highly skilled attackers to pluck passwords, encryption keys, and other secrets out of silicon-resident memory. On Tuesday, two separate academic teams disclosed two new and distinctive exploits that pierce Intel's Software Guard eXtension, by far the most sensitive region of the company's processors.

Abbreviated as SGX, the protection is designed to provide a Fort Knox of sorts for the safekeeping of encryption keys and other sensitive data even when the operating system or a virtual machine running on top is badly and maliciously compromised. SGX works by creating trusted execution environments that protect sensitive code and the data it works with from monitoring or tampering by anything else on the system.

Key to the security and authenticity assurances of SGX is its creation of what are called enclaves, or blocks of secure memory. Enclave contents are encrypted before they leave the processor and are written in RAM. They are decrypted only after they return. The job of SGX is to safeguard the enclave memory and block access to its contents by anything other than the trusted part of the CPU.

Read 23 remaining paragraphs | Comments

index?i=i7XgvFr_YyI:-wFDRD_FoLQ:V_sGLiPB index?i=i7XgvFr_YyI:-wFDRD_FoLQ:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments