Northcape | Trusted Systems Group

Description

Enclaves running in trusted execution environments might want to have direct control over peripherals such as network interface cards or accelerators. While making the device accessible to an enclave is often supported in hardware, sharing it between two enclaves comes with unique challenges. In particular, as devices are under the enclaves’ full control, no restrictions on their use of the devices can be enforced. This means that, e.g., one enclave can impersonate the network identity of another device by spooding its MAC and IP addresses or attempt to steal data from other enclaves’ computations from an accelerator device. Also, enclaves might attempt abuse DMA capabilities of devices to steal data from other enclaves. State-of-the-art solutions to this problem usually rely on trusted software that resets the device during context switches from one enclave to another to mitigate data leakage (CURE) in conjunction with memory access control or encryption, while use cases such as network policies for the enclaves usually require dedicating one interface port to each enclave.