Unlock instant, AI-driven research and patent intelligence for your innovation.

Implementation method and system of Intel SGX trusted service clustering deployment and electronic equipment

A technology of service clustering and implementation method, which is applied in transmission systems, digital transmission systems, electrical components, etc., and can solve problems such as the inability to realize trusted service cluster deployment.

Pending Publication Date: 2022-01-11
杭州弦冰科技有限公司
View PDF0 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] The main purpose of the present invention is to provide a method and system for implementing the clustered deployment of Intel SGX trusted services, so as to solve the problem that the clustered deployment of trusted services cannot be realized in related technologies

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Implementation method and system of Intel SGX trusted service clustering deployment and electronic equipment
  • Implementation method and system of Intel SGX trusted service clustering deployment and electronic equipment
  • Implementation method and system of Intel SGX trusted service clustering deployment and electronic equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0051]In order to enable those skilled in the art to better understand the solutions of the present invention, the following will clearly and completely describe the technical solutions in the embodiments of the present invention in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments are only It is an embodiment of a part of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts shall fall within the protection scope of the present invention.

[0052] It should be noted that the terms "first" and "second" in the description and claims of the present invention and the above drawings are used to distinguish similar objects, but not necessarily used to describe a specific sequence or sequence. It should be understood that the data so used may be interchanged under appropriate ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an implementation method and system of Intel SGX trusted service clustering deployment and electronic equipment. The method comprises the steps of generating a complete ECC master key; fragmenting the ECC master key into a plurality of key fragments, and storing the plurality of key fragments in a scattered manner; when trusted service based on Intel SGX in a cluster is initialized, receiving input key fragments reaching a preset number; in an Enclave program space, recovering a complete ECC (Error Correction Code) master key according to an input key fragment; inputting the ECC master key into a key derivation function to derive a security key; and encrypting and decrypting the service data by using the security key. According to the method, the same ECC master key and the same key derivation function are adopted, all Intel SGX trusted services in the same cluster can derive the same security key, the purpose of secure sharing of service data in the cluster is achieved, the technical effect of clustered deployment of the Intel SGX trusted services is achieved, and the technical problem that clustered deployment of trusted services cannot be realized is solved.

Description

technical field [0001] The present invention relates to the field of trusted computing applications, in particular to a method, system and electronic equipment for implementing clustered deployment of Intel SGX trusted services. Background technique [0002] At present, in the field of trusted computing (TEE) applications, Intel's SGX technology is the most mature and widely used. Most cloud service providers support developers to use Intel SGX technology to implement applications such as data encryption and confidential computing. The principle of Intel's SGX technology is to isolate an area called the Enclave inside the Intel CPU, and the program code and data loaded into the Enclave area will not be tampered with or peeped by the outside world. In short, the Enclave is like a hardware-based security black box inside the CPU, so the program logic and data storage executed inside the Enclave are safe. [0003] At the same time, Intel SGX provides the SGX_KEYPOLICY_MRENCLAV...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/32H04L9/08H04L9/40H04L67/1001
CPCH04L9/3239H04L9/085H04L63/0435
Inventor 姚有方何剑虹
Owner 杭州弦冰科技有限公司