Time and Location: 5/13/2020, Wed., 4 p.m., Online seminar

Speaker: Mr. Xi Wang

Title: xBGAS Security Extension for Enclaves in Large-Scale Systems

Abstract: Driven by sensitive code and data protection, we witnessed the proliferation of Trusted Execution Environment (TEE), in addition to standard Rich OS System Execution Environment (REE). All major CPU vendors have rolled out their TEEs (e.g., ARM TrustZone, Intel SGX, and AMD SEV) to create a secure execution environment, commonly referred to as an “enclave”. However, most of the existing enclaves are designed for traditional single node execution environments, which does not provide protections over inter-node data transfer when exeucting large-scale HPC applications. As a result, new enclave designs are desired to address the potential risks of inter-node communication attacks. In this talk, we will introduce a new xBGAS enclave model based on an open-source secure enclave for RISC-V systems, named Keystone. We will show the motivations and advantages of our design in comparison with existing works. We will also analyze the potential threat models and how xBGAS enclave can defend these threats.