[ctz]

> With SGX, Intel had the chance to offer a widely available security token (built in to every new CPU!) that anyone could freely program and use for their own security purposes. They blew it when they created their "launch control" policy

Now rescinded.

[stijnhoop]

Could you detail that with a link to this news?

[amluto]

The Intel SDM, Volume 3, version 058 has a new set of MSRs called IA32_SGXLEPUBKEYHASH along with a new feature control bit for them. The intended policy is not specified anywhere that I can see, nor can I find any PR announcement or whitepaper. I also don't know what CPU generation will support that feature.