Hacker News new | ask | show | jobs
by londons_explore 2166 days ago
You could imagine a scheme in which the company running the data centers ran hypervisor software made by intel on chips made by intel. You trust intel, and you trust their software and hardware does as advertised, but you don't need to trust the hosting company (Google).

The software would run your VM, and provide some kind of API which your VM could query to be sure it was running in a secure enclave, managed by Intel's signed software. The result of the API could be signed with Intel's key.
2 comments
saagarjha 2166 days ago
> You trust intel, and you trust their software and hardware does as advertised, but you don't need to trust the hosting company (Google).

I should note that this by itself is a fairly hilarious proposition.

link
exikyut 2166 days ago
That's pretty much the idea of SGX.

But SGX has been broken multiple times, and because people love breaking SGX because it's such a "all the security eggs in one basket" design, it will virtually certainly be broken again in the future.

Furthermore, SGX is reasonably disliked, inasmuch as people consider its equivalence to the security and boundary implications of the Management Engine.

link