This paper analyzes Intel SGX, based on the 3 papers that introduced it, on the Intel Software Developer's Manual (which supersedes the SGX manuals), on an ISCA 2015 tutorial, and on two patents. We use the papers, reference manuals, and tutorial as primary data sources, and only draw on the patents to fill in missing information.
This paper's contributions are a summary of the Intel-specific architectural and micro-architectural details needed to understand SGX, a detailed and structured presentation of the publicly available information on SGX, a series of intelligent guesses about some important but undocumented aspects of SGX, and an analysis of SGX's security properties.Category / Keywords: Date: received 30 Jan 2016, last revised 12 Aug 2016 Contact author: victor at costan us Available format(s): PDF | BibTeX Citation Note: Added references to SGX papers published after our paper was published. Made minor revisions. Version: 20160812:222731 (All versions of this report) Short URL: ia.cr/2016/086 Discussion forum: Show discussion | Start new discussion