💾 Archived View for gemini.bortzmeyer.org › fosdem › event-10976.gmi captured on 2022-04-29 at 01:14:50. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2021-12-17)
-=-=-=-=-=-=-
Dong Du
Type devroom
Starts on day 1 (2021-02-06) at 15:00 (Brussels time, UTC+1) in room Hardware trusted (duration 00:25)
Matrix room #hardware trusted:fosdem.org
Emerging applications like artificial intelligence and autonomous car require high security-assurance, which stimulates the wide-spread deployment of trusted execution environment (TEE). However, prior enclave systems are far from the ideal for three reasons.
1) Scalability: only support limited secure memory or limited number of instances;
2) Performance: not well-fit the requirements of high-performance application, e.g., poor secure communication performance;
3) Security: many still have security flaws, e.g., suffering cache-based side channels attacks.
Penglai-Enclave is proposed to overcome these challenges. The Penglai open-source project aims to build a scalable and efficient TEE system based on RISC-V, which is made powerful through hardware-assisted scalable physical memory isolation extensions. Our evaluations show that Penglai can achieve more than 1,000 concurrently running instances even in a resource-restricted device. We also have supported libraries like ARM PSA on Penglai to ease the development of trusted applications, and applied formal methods to validate its software TCB.