ziyilin commented on issue #34: URL: https://github.com/apache/incubator-teaclave-java-tee-sdk/issues/34#issuecomment-1899686255
@MarkusBernhardt > as I unterstand it at the moment is the creation of an enclave quite time consuming. we would like to create an enclave for a patient when he logs in and use that enclave until he logs out or is logged out by a timeout some time later. is that supported? The "enclave" you referred here could be two things: 1. The enclave environment created in the SGX. It is created very fast, and you can destroy it at any moment. 2. The native image version of confidential program deployed and run in the SGX. The creation of native image is a little bit time consuming, depending on the size of target program. It could be a few minutes. It is created at build time and deployed in the SGX in advance. It shouldn't be created at the user logging time. > can we persist the enclave memory to some storage in a secure way and restore later back? This also depends on your actual requirement. 1. If you want to persist some data in the memory, you can serialize the data to disk and deserialize it back to memory next time. It is not supported in the framework currently, but is doable. 2. If you want to take a snapshot of the entire program to the disk, and resume the program from the disk some time later. A technique named CRIU(https://github.com/checkpoint-restore/criu) does such job in the REE, but I doubt if it works in the TEE. The implementation of such work is beyond the scope of this project. But sitll, I think it's a very interesting topic to explore. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@teaclave.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@teaclave.apache.org For additional commands, e-mail: dev-h...@teaclave.apache.org
