Graphene-SGX
E653459
Graphene-SGX is a library OS and runtime environment that enables unmodified Linux applications to run securely inside Intel SGX enclaves with minimal porting effort.
All labels observed (1)
| Label | Occurrences |
|---|---|
| Graphene-SGX canonical | 1 |
Statements (37)
| Predicate | Object |
|---|---|
| instanceOf |
library operating system
ⓘ
runtime environment ⓘ software project ⓘ |
| abbreviation | Graphene-SGX NERFINISHED ⓘ |
| basedOn | Graphene NERFINISHED ⓘ |
| category |
application sandboxing framework
ⓘ
confidential computing framework ⓘ trusted execution environment software ⓘ |
| compatibleWith | Intel SGX SDK NERFINISHED ⓘ |
| deploymentModel | user-space library OS ⓘ |
| feature |
file system shielding
ⓘ
library OS abstraction ⓘ minimal porting effort for existing applications ⓘ network shielding ⓘ remote attestation support ⓘ shielded execution ⓘ system call interposition ⓘ |
| goal | enable secure execution of applications inside Intel SGX enclaves ⓘ |
| implements | shielded execution environment for Intel SGX ⓘ |
| license | open source license ⓘ |
| origin | academic research project ⓘ |
| programmingLanguage |
C
ⓘ
C++ ⓘ |
| relatedTo |
Graphene project
NERFINISHED
ⓘ
Intel SGX NERFINISHED ⓘ |
| requires |
Intel SGX-capable CPU
ⓘ
SGX-enabled BIOS or firmware ⓘ |
| runsOn | Intel SGX enclaves ⓘ |
| securityProperty |
confidentiality of in-enclave data
ⓘ
integrity of in-enclave computation ⓘ isolation from untrusted host OS ⓘ |
| supportsApplicationType | unmodified Linux applications ⓘ |
| supportsOperatingSystem | Linux ⓘ |
| supportsPlatform | Intel Software Guard Extensions NERFINISHED ⓘ |
| useCase |
confidential computing
ⓘ
running legacy Linux applications in SGX enclaves ⓘ secure cloud execution ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.