20240054071. HARDWARE MECHANISM TO EXTEND MKTME PROTECTIONS TO SGX DATA OUTSIDE EPC simplified abstract (Intel Corporation)

From WikiPatents
Jump to navigation Jump to search

HARDWARE MECHANISM TO EXTEND MKTME PROTECTIONS TO SGX DATA OUTSIDE EPC

Organization Name

Intel Corporation

Inventor(s)

KRYSTOF Zmudzinski of Forest Grove OR (US)

HARDWARE MECHANISM TO EXTEND MKTME PROTECTIONS TO SGX DATA OUTSIDE EPC - A simplified explanation of the abstract

This abstract first appeared for US patent application 20240054071 titled 'HARDWARE MECHANISM TO EXTEND MKTME PROTECTIONS TO SGX DATA OUTSIDE EPC

Simplified Explanation

The apparatus described in the patent application is designed to enhance security for a secure enclave by creating a unique encryption key for a specific linear address region outside of the established address range. This key is only accessible to the enclave and is stored in an enclave control structure along with the corresponding linear address region.

  • The hardware processor defines a linear address region outside the established address range for the secure enclave.
  • A unique encryption key is generated for this linear address region, accessible only to the enclave.
  • A key identifier is assigned to the unique encryption key.
  • The linear address region and unique encryption key are stored in an enclave control structure.
  • The key identifier and unique encryption key are programmed into memory encryption circuitry.

Potential applications of this technology: - Enhanced security for secure enclaves in various computing systems. - Protection of sensitive data and processes within the enclave.

Problems solved by this technology: - Mitigating the risk of unauthorized access to secure enclave data. - Ensuring that encryption keys are unique and only accessible to authorized entities.

Benefits of this technology: - Improved security measures for protecting sensitive information. - Enhanced control over encryption keys and access to secure enclave data.


Original Abstract Submitted

an apparatus comprises a hardware processor to define a linear address (la) region outside an established address range for a secure enclave, generate, for the linear address (la) region, a unique encryption key accessible only to the enclave, assign a key identifier to the unique encryption key, store the linear address (la) region and the unique encryption key in an enclave control structure, and program the key identifier and the unique encryption key into a memory encryption circuitry.

Retrieved from "http://wikipatents.org/index.php?title=20240054071._HARDWARE_MECHANISM_TO_EXTEND_MKTME_PROTECTIONS_TO_SGX_DATA_OUTSIDE_EPC_simplified_abstract_(Intel_Corporation)&oldid=34130"