Hacker News new | ask | show | jobs
by rkagerer 2237 days ago
How long until we see an SGX-damaging malware in the wild that simply eats up all the monotonic counters?
3 comments
eat_veggies 2237 days ago
Azure, IBM, and Alibaba clouds support SGX—anyone want to brick some monotonic counters?
link
vladivstok 2237 days ago
SGX is disabled by default on most systems so it would have to be a very targeted malware
link
rkagerer 2237 days ago
Truly disabled, or in the Software Controlled state?
link
aseipp 2237 days ago
Your motherboard UEFI blob and chip both have to support it. The vast majority of systems are limited by the fact their UEFI implementation does not enable (or allow you to enable) SGX at all, and at least on my Ice Lake laptop, SGX was disabled out of the box in UEFI (in a non-software controlled state.)
link
yrro 2237 days ago
Or ransomware that does so if the ransom is not paid. This can also be done with UEFI variable writes, since the flash where they are stored is... often not of the highest quality!
link
throwaway2048 2237 days ago
I don't think many people care about their SGX functionality.
link