|
|
|
|
|
|
by throw_a_grenade
1292 days ago
|
|
|
Yes, the keys are kept in CPU itself. AFAIK Intel doesn't disclose the exact mechanism (blown fuses, EPROM or something entirely different). You can't get valid quote outside the enclave, because CPU doesn't provide the instruction to sign the quote outside the enclave, and you can't calculate it youself, because you don't know CPU's private key. |
|
|