An enclave is an area of execution that is protected by processor-based controls. Enclaves exist within the same context as their host application and have access to the same host application resources. Enclaves have been designed to only execute user-mode code. Any need to execute code at higher privilege levels requires leaving the enclave. Attempts by non-enclave code to read or write enclave memory are blocked by processor-level controls. Two enclaves belonging to the same or different applications can communicate with each other, provided they have established mutual trust. Intel® SGX provides capabilities to establish mutual trust.
Intel® Software Guard Extensions (Intel® SGX) consists of a set of CPU instructions and platform enhancements that enable applications to create private areas within which code and associated data can be protected from compromise during execution. The protection offered by Intel® SGX, when used appropriately by application developers, can prevent compromise due to attacks from privileged software and many hardware-based attacks.
Rust is a modern programming language that puts performance, reliability, and productivity first. It's type and memory safety system eliminates entire classes of bugs you frequently encounter when using other programming languages. This is combined with a powerful compiler that helps the developer write correct code through static analysis.
Yes, EDP is fully supported on Windows.
Built on top of the Enclave Development Platform, Fortanix Self-Defending Key Management Service (SDKMS) is the world's first cloud solution secured with Intel® SGX. With SDKMS, you can securely generate, store, and use cryptographic keys and certificates, as well as secrets, such as passwords, API keys, tokens, or any blob of data.Learn more about SDKMS