Poster: TGX: Secure SGX enclave management using TPM

Chakraborty, Dhiman and Bugiel, Sven and Jha, Atul Ananad
(2019) Poster: TGX: Secure SGX enclave management using TPM.
In: NDSS Symposium 2019, February 24-27, 2019, San Diego, CA, USA.
Conference: NDSS Network and Distributed System Security Symposium


Download (468kB) | Preview
Official URL:


Intel SGX provides a trusted execution environment on commodity computing platforms. Recent micro-architectural attacks like Spectre, Meltdown, or Foreshadow, however, raise doubts about the promised isolation of SGX-protected code and data, including some of the necessary cryptographic operations and credentials, e.g., for attestation. In this poster we present TGX, a combination of SGX and TPM working together to provide stronger isolation of crucial cryptographic operations of SGX and a way to circumvent microarchitectural attacks against SGX. TGX enables SGX to move its signing and verification mechanism from processor to TPM making the security sensitive information never available outside TPM, removing, for instance, the possibilities of stealing them from L1 cache. In particular, TGX should motivate that SGX and TPM can form a beneficial symbiosis.


Actions (login required)

View Item View Item