jagomart
digital resources
picture1_Material Ppt 78414 | Donporter Sgx Day20


 122x       Filetype PPTX       File size 0.58 MB       Source: gramineproject.io


File: Material Ppt 78414 | Donporter Sgx Day20
disclosures and disclaimers porter has a significant financial interest in and serves as a technical advisor to fortanix work supported in part by the us national science foundation vmware and ...

icon picture PPTX Filetype Power Point PPTX | Posted on 05 Sep 2022 | 3 years ago
Partial capture of text on file.
                    Disclosures and Disclaimers
     • Porter has a significant financial interest in and 
        serves as a Technical Advisor to Fortanix
     • Work supported in part by the US National Science 
        Foundation, VMware, and Intel
         – Any opinions, findings, and conclusions or 
           recommendations expressed in this material are ours 
           alone, and do not necessarily reflect the views of the 
           National Science Foundation or other sponsors.
     • Not ready for Production Use
         – But working to get there soon…
                                                                        2
                        Graphene Overview
     • Goal: Easily run unmodified Linux applications on 
        other platforms
         – Current focus on SGX
     • Pragmatic approach: 
         – Modifying/rewriting apps may be best in long-run
         – Getting legacy code in SGX quickly still an improvement
     • Open-Source (LGPL)
     • An experiment in progress…
                                                                     3
                                How Graphene Works
       • Reimplements Linux system calls on smaller ABI
            – Vision: Implement ABI on any system, 
                            Graphene “just works”
                Enclave
                                     Apache(P1)
                                                            Linux functionality
                             open  read   write …
                             open  read   write …
                                           LibOS
                            Platform Adaption Layer 
                                    + Shield              Portability & shielding
                                   36 OCalls               (Semantic + crypto checks)
                                 + 2 for Debugging
                          Untrusted Host OS
                                                                                                4
                       Multi-Process Applications
                            Apache(P1)               Apache(P2)
                                kill
               Attestation                               Attestation
                        LibOS RpcSend()          LibOS
                 by CPU                 Exchange           by CPU
                        RpcConnect()   Encryption     RpcListen()
                           OCalls         Key        OCalls
        • One LibOS / address space  per process
        • Implement shared OS abstractions over RPC
        • Supports fork, exec, most System V IPC, signals, etc.
                                     More LibOS Features
                          l                fork         exec            Virtual File System
                          a   SYS V
                          n
                          g
                          i    IPC
                    d     S
                    a                                      ELF      Proc     Chroot       e
                    e                                    loader      FS
                    r                                                        (Passthru)   p
                    h                      Migration                                      i  Socket
                    T                                                                     P
                         Namespace                                              FS
                                 RPC                       VMA                Graphene LibOS
                                                                  49 KLOC                891 KB
                                                                  LibOS Source code         LibOS Compiled
                                                                + 18 KLOC              + 279 KB
                                                                   SGX PAL Source         SGX PAL Compiled
The words contained in this file might help you see if this file matches what you are looking for:

...Disclosures and disclaimers porter has a significant financial interest in serves as technical advisor to fortanix work supported part by the us national science foundation vmware intel any opinions findings conclusions or recommendations expressed this material are ours alone do not necessarily reflect views of other sponsors ready for production use but working get there soon graphene overview goal easily run unmodified linux applications on platforms current focus sgx pragmatic approach modifying rewriting apps may be best long getting legacy code quickly still an improvement open source lgpl experiment progress how works reimplements system calls smaller abi vision implement just enclave apache p functionality read write libos platform adaption layer shield portability shielding ocalls semantic crypto checks debugging untrusted host os multi process kill attestation rpcsend cpu exchange rpcconnect encryption rpclisten key one address space per shared abstractions over rpc supports ...

no reviews yet
Please Login to review.