Enclave Development Platform

Fortanix EDP leverages Runtime Encryption® technology, protecting the application at runtime.
Learn more
Fortanix Enclave development platform (EDP) is the preferred way to write Intel® SGX enclaves from scratch. Through EDP, developers can securely develop application using the Rust programming language. The Rust language, combined with Intel® SGX, makes the application secure from development vulnerabilities and outsider attacks.

Benefits of EDP

Complete security

Be secure with the Rust programming language. The code in secure enclaves is the most security-critical part of your application. Rust's advanced static analysis, built right into the compiler, makes it easy to have confidence in the security of your program.

Battle tested

The EDP is what Fortanix uses in-house for various products, such as the award-winning Self-Defending Key Management Service (SDKMS). Our years of experience running secure enclaves in production have informed the design of the EDP to fit application developer's needs.

Ease of Use

Rust EDP applications are just like native Rust applications. As high-level primitives, such as networking, transport security, database drivers, etc. just work inside the enclave, it is very easy to get started writing microservices and web applications with EDP.

Compatible with existing Rust code

The Fortanix EDP is fully integrated with the Rust compiler. You'll be able to use new features in the compiler release immediately. Thanks to Rust's stability, old code will continue to work after upgrading your compiler.

FAQ

An enclave is an area of execution that is protected by processor-based controls. Enclaves exist within the same context as their host application and have access to the same host application resources. Enclaves have been designed to only execute user-mode code. Any need to execute code at higher privilege levels requires leaving the enclave. Attempts by non-enclave code to read or write enclave memory are blocked by processor-level controls. Two enclaves belonging to the same or different applications can communicate with each other, provided they have established mutual trust. Intel® SGX provides capabilities to establish mutual trust.

Intel® Software Guard Extensions (Intel® SGX) consists of a set of CPU instructions and platform enhancements that enable applications to create private areas within which code and associated data can be protected from compromise during execution. The protection offered by Intel® SGX, when used appropriately by application developers, can prevent compromise due to attacks from privileged software and many hardware-based attacks.

Rust is a modern programming language that puts performance, reliability, and productivity first. It's type and memory safety system eliminates entire classes of bugs you frequently encounter when using other programming languages. This is combined with a powerful compiler that helps the developer write correct code through static analysis.

Yes, EDP is fully supported on Windows.

Use cases

SDKMS

Built on top of the Enclave Development Platform, Fortanix Self-Defending Key Management Service (SDKMS) is the world's first cloud solution secured with Intel® SGX. With SDKMS, you can securely generate, store, and use cryptographic keys and certificates, as well as secrets, such as passwords, API keys, tokens, or any blob of data.

Learn more about SDKMS
Ready to try Fortanix EDP? Get started