Software Based Off Chip Memory Protection for RISC V Trusted Execution Environments
user-5f165ac04c775ed682f5819f(2020)
摘要
We present a software-based memory protection for RISC-V enclaves. Our system provides confidentiality and integrity guarantees for the enclave pages when an attacker can arbitrarily read or write to external memory. Unlike hardwarebased implementations such as Memory Encryption Engine (MEE) in Intel SGX, our software-based implementation requires no additional security-specific hardware. We use instead only a small on-chip scratchpad as our trusted memory region. This results in a portable and highly adaptable solution, applicable to primarily embedded contexts. Our approach is implemented as a module for Keystone, which is an open-source framework for RISC-V enclaves.
更多查看译文
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络