Konubinix' opinionated web of thoughts

Intel Memory Encryption Engine


The IntelĀ® SGX Memory Encryption Engine

an autonomous hardware unit called the Memory Encryption Engine (MEE), whose role is to protect the confidentiality, integrity, and freshness of the CPU-DRAM traffic over some memory range.

It is an extension of the memory controller that on-the-fly encrypts/decrypts the data going to and from a range of the DRAM called the processor reserved memory. [1].

Notes linking here



COSTAN, V., DEVADAS, S., Intel Sgx Explained, https://eprint.iacr.org/2016/086.pdf.