tvm-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Yu Ding <>
Subject Re: [dmlc/tvm] [RFC][SGX] Use Fortanix EDP instead of rust-sgx-sdk (#2887)
Date Thu, 04 Apr 2019 23:42:14 GMT
No offense.

The difference between rust-sgx-sdk and Fortanix EDP roots from basic assumptions of security.
Fortanix EDP is not designed for security, so it has assumptions of trusting the OS. For example,
the atomicity of EDP's SGX `RwLock` is **untrusted**. Technically, Fortanix EDP maintains
an event queue in **untrusted** space and `RwLock`'s atomicity roots from it -- resulting
in untrusted atomicity. For other input/output, they are all interacting with untrusted input/output

Are you sure you want it? Every dependency crate would potentially depends on untrusted I/O
and weaken your trustworthyness.

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
  • Unnamed multipart/alternative (inline, 7-Bit, 0 bytes)
View raw message