How do you know the root enclave key isn't retained somewhere before it is writt... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

		HeatrayEnjoyer 13 hours ago \| parent \| context \| favorite \| on: Private Cloud Compute Security Guide How do you know the root enclave key isn't retained somewhere before it is written? You're still trusting Apple. Key extraction is difficult but not impossible.

jsheard 13 hours ago | [–]

> Key extraction is difficult but not impossible.

Refer to the never-ending clown show that is Intels SGX enclave for examples of this.

https://en.wikipedia.org/wiki/Software_Guard_Extensions#List...

yalogin 9 hours ago | [–]

Can you clarify what you mean by retained and written?

Consider applying for YC's W25 batch! Applications are open till Nov 12.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact