Automatic Inference of Enclave Placement in LLVM Compiler (PriSC 2025)

Sun 19 - Sat 25 January 2025 Denver, Colorado, United States

Who

Wesley B Nuzzo, Mohamed Elwakil, Anitha Gollamudi

Track

PriSC 2025

Time Zone

The program is currently displayed in (GMT-07:00) Mountain Time (US & Canada).

Use conference time zone: (GMT-07:00) Mountain Time (US & Canada)Select other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Mon 20 Jan 2025 14:25 - 14:49 at Jax - Session 3

Abstract

Trusted Execution Environments (TEEs) enable applications to obtain strong confidentiality and integrity guarantees even in the presence of privileged but malicious software. Key to their enforcement is an enclave—a secure hardware container that provides isolated execution. However, in order to build enclave-based applications, developers have to carefully partition their application. The process can be tedious and error prone.

In this work, we propose automatic inference of enclave placement in the LLVM compilation framework. Our enclave inference algorithm takes a non-enclave application along with a security policy; infers the enclave placement and compiles it to Intel SGX enclaves using OpenEnclave framework. By implementing at the level of LLVM IR, any application that gets compiled to LLVM IR can leverage our technique significantly reducing the programmer’s burden.

Wesley B Nuzzo

University of Massachusetts, Lowell (UML)

Mohamed Elwakil

U.S. Coast Guard Academy

United States

Anitha Gollamudi

University of Massachusetts Lowell