researcher successfully extracted the cross-platform base firmware for sgx ๐ง
Quote Tweet
The very important goal has been achieved, for the benefit of the entire information security society: we decrypted Intel XuCode!
Show this thread
3
4
47
Conversation
it is probably not a good idea to rely on a tee for the long-term protection of secrets
2
1
22
(for global secrets that is, for local key storage TEEs are much better than nothing)
2
1
14
Replying to
Even if SGX was a proper secure element rather than a TEE, they should only be used as an additional layer of security rather than the basis for a protocol and a single point of failure. Features like hardware keystores don't work well as execution modes on a general purpose CPU.