You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tvm.apache.org by Yu Ding <no...@github.com> on 2019/04/04 23:42:14 UTC

Re: [dmlc/tvm] [RFC][SGX] Use Fortanix EDP instead of rust-sgx-sdk (#2887)

No offense.

The difference between rust-sgx-sdk and Fortanix EDP roots from basic assumptions of security. Fortanix EDP is not designed for security, so it has assumptions of trusting the OS. For example, the atomicity of EDP's SGX `RwLock` is **untrusted**. Technically, Fortanix EDP maintains an event queue in **untrusted** space and `RwLock`'s atomicity roots from it -- resulting in untrusted atomicity. For other input/output, they are all interacting with untrusted input/output sources.

Are you sure you want it? Every dependency crate would potentially depends on untrusted I/O and weaken your trustworthyness.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/dmlc/tvm/issues/2887#issuecomment-480101073