Skip to main content

Vulnerabilities and Attacks

This page will attempt to list the know vulnerabilities of the various TEEs of interest to the Enarx project, as well as their status ("fixed in version X") and workarounds, if any.

They are organised by technology and by date, trying to separate between attacks relating to the hardware itself and those relating to their respective SDKs.

Each technology will also be introduced by a section presenting its inherent limitations: while not vulnerabilites per se, as they are part of of the respective threat models, they can be useful to have in mind when considering the overall picture.

Note: this page is very much a work in progress. Any help is welcome to help make it more complete.

Intel SGX

help welcome :)

Malware Guard Extension: Using SGX to Conceal Cache Attacks

Prime + Probe

  • Type: side channel (DRAM cache)
  • Date: 2017
  • By: Graz University of Technology
  • Paper:
  • More info: ?
  • Countermeasures: DR.SGX
  • Fixed in: ?

SgxPectre

Foreshadow

Plundervolt

Practical Enclave Malware with Intel SGX

MicroScope

Load Value Injection (LVI)

AMD SEV

help me :)

SEVered

IBM PEF

N/A