SnakeGX

A Sneaky Attack Against SGX Enclaves

Conference paper (2021)

Authors

Flavio Toffalini Singapore University of Technology and Design

Mariano Graziano Cisco Systems

M. Conti Università degli Studi di Padova

Jianying Zhou Singapore University of Technology and Design

Affiliation

External organisation

TEE SGX Code-reuse attacks

To reference this document use:

http://resolver.tudelft.nl/uuid:09171083-6749-46ea-a272-59ea6b9950ce

More Info

expand_more

Published Date

2021

Language

English

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Affiliation

External organisation

Abstract

Intel Software Guard eXtension (SGX) is a technology to create enclaves (i.e., trusted memory regions) hardware isolated from a compromised operating system. Recently, researchers showed that unprivileged adversaries can mount code-reuse attacks to steal secrets from enclaves. However, modern operating systems can use memory-forensic techniques to detect their traces. To this end, we propose SnakeGX, an approach that allows stealthier attacks with a minimal footprint; SnakeGX is a framework to implant a persistent backdoor in legitimate enclaves. Our solution encompasses a new architecture specifically designed to overcome the challenges SGX environments pose, while preserving their integrity and functionality. We thoroughly evaluate SnakeGX against StealthDB, which demonstrates the feasibility of our approach.