>From what I understand, SGAxe is still utilizing TSX to leak data from LFB. It's not a problem of SGX, but a problem of TSX. TSX breaks the security guarantees provided by SGX, or VMX.
The TSX problem is not limited to attacking SGX, but also stealing memory from Dom0 in Xen, or memory from the kernel of Host OS. To solve this problem, TSX needs to be completely removed/disabled. It's a long-existing problem. Intel tried to remove TSX from a couple of commercial SKUs but haven't done it completely. Best, Yu On Wed, Jun 10, 2020 at 7:43 AM Matt Sicker <[email protected]> wrote: > https://cacheoutattack.com/ > > With all these practical attacks in place for Intel (and AMD to a > different extent), what do you think the future of SGX and its > competitors will look like? Are there plans on supporting other > hardware enclaves that may be more secure (if they exist)? > > -- > Matt Sicker <[email protected]> > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
