Abstract:
Nowadays, aiming to design complex and safer systems has become a necessity. For this reason, TEEs (Trusted Execution Environments) have been introduced. TEEs have become increasingly popular in modern CPUs as they provide a way to implement hardware-assisted security services. TEEs are in fact used to improve data security. However, due to security vulnerabilities, they have become a target of various attacks. Intel SGX is the most implemented and tested hardware-based encryption TEE. This study provides a general overview of the features, benefits, limitations, and vulnerabilities of TEEs based on Intel SGX hardware and other architectures, analyzing some attack mitigations. Some generic Intel SGX server-side features and applications have been described such as data sealing, attestation, data privacy, data protection, and encryption. The results of this study show that with the help of some Intel SGX techniques we can prevent some attacks, but side-channel attacks cannot be completely prevented.