Overview:
The agenda will cover the SGX architecture and programming model as implemented in the first Intel microprocessor to include the feature. Included will be a description of the architecture, the supporting infrastructure, security properties, and implementation details.
Slides from this tutorial are available at:
https://software.intel.com/sites/default/files/332680-002.pdf
Agenda:
Organizers:
Ittai Anati: Sr. Principal Engineer, Core Processor Team, Intel, Haifa, Israel. Ittai is responsible for the first implementation of SGX on an Intel processor. He led and drove the implementation team. In addition he provided substantial input into the architectural definitions of SGX. He has extensive experience and expertise in both microprocessor architecture and secure computing. Ittai holds a B.Sc in EE from the Technion, Israel Institute of Technology.
Frank McKeen: Principal Engineer, Security Research Lab, Intel, Portland OR, USA. Frank is the inventor of the SGX architecture and leader of the SGX architecture research team. He has previous experience in microprocessor design, security concepts, and trusted computing. He received a BSEE from Northeastern University and is a member of the IEEE.
Additional Presenters:
Shay Gueron is a Sr. Principal Engineer, Core Processor Team, Intel, Haifa, Israel. He is the Chief Core Cryptography Architect of the CPU Architecture Group. Shay is also a professor at the Department of Mathematics at the University of Haifa. His interests include applied cryptography, security, and algorithms. Shay has made multiple contributions to Intel’s architecture, micro architecture, security technologies, the design of algorithms and their efficient implementations in hardware and software. Shay was the responsible for the definition, design, and the implementation of the cryptographic functionality of SGX, and is the inventor of the Memory encryption Engine.
Haitao Huang is a senior software architect with Intel where he works on software stack for next-generation processors, currently focusing on SGX feature. Previously he contributed to open source graphics and media architecture and development for Android OS on Intel platforms. He has more than 10 years of experience of software development on various platforms and technologies before joining Intel in 2011. Haitao received his Ph.D degree in Chemical Engineering from Texas Tech University for his work done on computer based control systems.
Simon Johnson is a Principal Engineer in the Intel Security Group where he is a Security Architect. Simon has been with Intel nearly 10 years and has been working in the Information Security space for over 20 years. Simon’s previous responsibilities have included developing public key infrastructures to support biometric passports and the Launch Control Policy element of Intel® Trusted Execution Technology. For SGX Simon lead the development of the Attestation and Provisioning architecture, and currently leads advanced security architecture development for server CPUs.
Rebekah Leslie-Hurd is a Research Scientist in the Security & Privacy Research Group at Intel Corporation in Portland, Oregon. She came to the Software Guard Extensions (SGX) team after completing her Ph.D. at Portland State University on the topic of memory-safe operating systems. Rebekah is the chief architect of the enclave dynamic memory management functionality for SGX and leads the efforts to formally verify the SGX design.
Harish Patil is a Principal Engineer with a technology path-finding and innovation team at Intel’s Software and Services group in Hudson, MA. He is interested in dynamic program analysis, deterministic replay, and debugging. Harish has a Ph.D. from University of Wisconsin, Madison, a B.Tech. and an M.Tech. from Indian Institute of Technology, Bombay, and an MBA from Babson College.
Carlos Rozas is a Principal Engineer in the Security Research Lab, Intel Corporation, Portland OR, USA. He is an SGX Architect and leader of the Cloud Security research team. He has previous experience in virtualization, security and trusted computing. He received a MS in Computer Engineering from University of Michigan and is a member of ACM.
Hisham Shafi is a Principal Engineer, Core Processor Team, Intel, Haifa, Israel. Hisham was responsible on implementation execution of first SGX on an Intel processor. He worked on the CPU side to cover micro-architectural definitions and coordinate implementations through the various teams. Hisham has extensive experience in microprocessors micro-architecture and architecture. He received an M.sc. in computer engineering from the Technion.
Main Page: http://www.ece.cmu.edu/calcm/isca2015/
Contact: [email protected]
The agenda will cover the SGX architecture and programming model as implemented in the first Intel microprocessor to include the feature. Included will be a description of the architecture, the supporting infrastructure, security properties, and implementation details.
Slides from this tutorial are available at:
https://software.intel.com/sites/default/files/332680-002.pdf
Agenda:
- Start 09:00
- SGX Overview
- In depth Architecture
- Break 11:00 -11:30
- SGX key hierarchy, attestation, provisioning
- Lunch 12:30 -1:30 (Demos available)
- SGX Security Properties
- Side Channel Development Tool Demo
- Formal Modeling for Architecture and Implementation
- Memory Encryption Engine Architecture and Security Properties
- Break 15:30-16:00
- Implementation Challenges on Core Processors
- Software: Run Time Environment, EPC Management, and SDK for Linux
Organizers:
Ittai Anati: Sr. Principal Engineer, Core Processor Team, Intel, Haifa, Israel. Ittai is responsible for the first implementation of SGX on an Intel processor. He led and drove the implementation team. In addition he provided substantial input into the architectural definitions of SGX. He has extensive experience and expertise in both microprocessor architecture and secure computing. Ittai holds a B.Sc in EE from the Technion, Israel Institute of Technology.
Frank McKeen: Principal Engineer, Security Research Lab, Intel, Portland OR, USA. Frank is the inventor of the SGX architecture and leader of the SGX architecture research team. He has previous experience in microprocessor design, security concepts, and trusted computing. He received a BSEE from Northeastern University and is a member of the IEEE.
Additional Presenters:
Shay Gueron is a Sr. Principal Engineer, Core Processor Team, Intel, Haifa, Israel. He is the Chief Core Cryptography Architect of the CPU Architecture Group. Shay is also a professor at the Department of Mathematics at the University of Haifa. His interests include applied cryptography, security, and algorithms. Shay has made multiple contributions to Intel’s architecture, micro architecture, security technologies, the design of algorithms and their efficient implementations in hardware and software. Shay was the responsible for the definition, design, and the implementation of the cryptographic functionality of SGX, and is the inventor of the Memory encryption Engine.
Haitao Huang is a senior software architect with Intel where he works on software stack for next-generation processors, currently focusing on SGX feature. Previously he contributed to open source graphics and media architecture and development for Android OS on Intel platforms. He has more than 10 years of experience of software development on various platforms and technologies before joining Intel in 2011. Haitao received his Ph.D degree in Chemical Engineering from Texas Tech University for his work done on computer based control systems.
Simon Johnson is a Principal Engineer in the Intel Security Group where he is a Security Architect. Simon has been with Intel nearly 10 years and has been working in the Information Security space for over 20 years. Simon’s previous responsibilities have included developing public key infrastructures to support biometric passports and the Launch Control Policy element of Intel® Trusted Execution Technology. For SGX Simon lead the development of the Attestation and Provisioning architecture, and currently leads advanced security architecture development for server CPUs.
Rebekah Leslie-Hurd is a Research Scientist in the Security & Privacy Research Group at Intel Corporation in Portland, Oregon. She came to the Software Guard Extensions (SGX) team after completing her Ph.D. at Portland State University on the topic of memory-safe operating systems. Rebekah is the chief architect of the enclave dynamic memory management functionality for SGX and leads the efforts to formally verify the SGX design.
Harish Patil is a Principal Engineer with a technology path-finding and innovation team at Intel’s Software and Services group in Hudson, MA. He is interested in dynamic program analysis, deterministic replay, and debugging. Harish has a Ph.D. from University of Wisconsin, Madison, a B.Tech. and an M.Tech. from Indian Institute of Technology, Bombay, and an MBA from Babson College.
Carlos Rozas is a Principal Engineer in the Security Research Lab, Intel Corporation, Portland OR, USA. He is an SGX Architect and leader of the Cloud Security research team. He has previous experience in virtualization, security and trusted computing. He received a MS in Computer Engineering from University of Michigan and is a member of ACM.
Hisham Shafi is a Principal Engineer, Core Processor Team, Intel, Haifa, Israel. Hisham was responsible on implementation execution of first SGX on an Intel processor. He worked on the CPU side to cover micro-architectural definitions and coordinate implementations through the various teams. Hisham has extensive experience in microprocessors micro-architecture and architecture. He received an M.sc. in computer engineering from the Technion.
Main Page: http://www.ece.cmu.edu/calcm/isca2015/
Contact: [email protected]