Unlock instant, AI-driven research and patent intelligence for your innovation.

sgx-based trusted input and output control method, device, device and storage medium

An input-output, trusted technology, applied in the direction of program control device, program control design, computer security device, etc., can solve the problem of SGX lacking general trusted I/O path support, unable to protect user input/output data, etc.

Active Publication Date: 2022-08-02
卓尔智联(武汉)研究院有限公司
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, SGX lacks support for generic trusted I / O paths and thus cannot secure user input / output data between enclaves and I / O devices

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • sgx-based trusted input and output control method, device, device and storage medium
  • sgx-based trusted input and output control method, device, device and storage medium
  • sgx-based trusted input and output control method, device, device and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0042] In order to make the purpose, technical solutions and advantages of the present application more clearly understood, the present application will be described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are only used to explain the present application, but not to limit the present application.

[0043] The SGX-based trusted input and output control method provided by this application can be applied to such as figure 1 in the application environment shown. The user equipment 101 communicates with the server 102 through the network. Wherein, the user equipment 102 may be, but not limited to, various personal computer devices, including character devices such as keyboards, mice, and monitors, and may also be virtual devices such as virtual keyboards, virtual mice, and the like. The server 102 may be implemented by an independent server or a server cluster compo...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present application relates to an SGX-based trusted input and output control method, device, computer equipment and storage medium. The present application can set an encrypted channel between the enclave and the input and output programs, which ensures the trusted transmission of sensitive data between the enclave and the input and output devices, and further improves the data transmission security of the enclave. The method includes: establishing a first enclave for running a user application, wherein an encrypted channel is used for data transmission between the user application and an input and output driver; using the input and output driver to obtain sensitive data input by the user equipment, and through the input and output The channel transfers the above-mentioned sensitive data from the input and output driver to the user application program, and runs the user application program in the first enclave, so that the user application program processes the above-mentioned sensitive data and obtains a data processing result; the data processing result is converted from the data processing result through the above-mentioned encrypted channel. The user application is passed to the above I / O driver and transmitted to the user device.

Description

technical field [0001] The present application relates to the technical field of computer security, and in particular, to an SGX-based trusted input and output control method, apparatus, computer equipment and storage medium. Background technique [0002] With the increase of software complexity and attack level, the security of mobile environments and cloud platforms requires more urgent hardware and platform security mechanisms. Traditional software encryption technology is still not enough to protect the security of the entire computer operating system. To this end, Intel launched SGX (Software Guard Extensions, Software Guard Extensions), SGX is an architectural extension to Intel processors, used to enhance the security of software, it is to encapsulate sensitive data and key code in software programs in an enclave (enclave). , also known as the Safe Zone), to protect it from malware. "enclave" is translated into Chinese as "enclave", which means that it comes from a c...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/53G06F21/57G06F21/60G06F9/455
CPCG06F21/53G06F21/575G06F21/602G06F9/45558G06F2009/45587
Inventor 吴良顺
Owner 卓尔智联(武汉)研究院有限公司