Konubinix' opinionated web of thoughts

Find Out Whether Your Hardware Can Play With Sgx

Fleeting

find out whether your hardware can play with sgx

From https://github.com/intel/SGXDataCenterAttestationPrimitives/tree/master/driver/linux

Ensure that you have the following required operating systems

I have debian testing, let’s hope that won’t cause much troubles. I cannot download the binaries from here.

Ensure that you have the following required hardware:

  • 8th Generation Intel(R) Core(TM) Processor or newer with Flexible Launch Control and Intel(R) AES New Instructions support*
  • Intel(R) Atom(TM) Processor with Flexible Launch Control and Intel(R) AES New Instructions support*

Let’s take a look at my cpuinfo.

cat /proc/cpuinfo |gi "model name"|head -1
model name	: Intel(R) Core(TM) i7-1065G7 CPU @ 1.30GHz

According to the intel documentation about this processor, it is 10th generation, has SGX support and AES New Instructions support. Great, but what about the Flexible Launch Control? According to this post, this should be seen with the OEM. Unfortunately, the OEM did not say such low level detail about my computer.

Actually, according to fortanix, not only this processor should be recent enough, but also this feature is not needed to play with sgx. The documentation could have been more explicit about this…

Notes linking here