TU Darmstadt / ULB / TUbiblio

Benchmarking the Second Generation of Intel SGX Hardware

El-Hindi, Muhammad ; Ziegler, Tobias ; Heinrich, Matthias ; Lutsch, Adrian ; Zhao, Zheguang ; Binnig, Carsten
eds.: Blanas, Spyros ; May, Norman (2022)
Benchmarking the Second Generation of Intel SGX Hardware.
SIGMOD '22: International Conference on Management of Data. Philadelphia, USA (13.06.2022)
doi: 10.1145/3533737.3535098
Conference or Workshop Item, Bibliographie

Abstract

In recent years, trusted execution environments (TEEs) such as Intel Software Guard Extensions (SGX) have gained a lot of attention in the database community. This is because TEEs provide an interesting platform for building trusted databases in the cloud. However, until recently SGX was only available on low-end single socket servers built on the Intel Xeon E3 processor generation and came with many restrictions for building DBMSs. With the availability of the new Ice Lake processors, Intel provides a new implementation of the SGX technology that supports high-end multi-socket servers. With this new implementation, which we refer to as SGXv2 in this paper, Intel promises to address several limitations of SGX enclaves. This raises the question whether previous efforts to overcome the limitations of SGX for DBMSs are still applicable and if the new generation of SGX can truly deliver on the promise to secure data without compromising on performance. To answer this question, in this paper we conduct a first systematic performance study of Intel SGXv2 and compare it to the previous generation of SGX.

Item Type: Conference or Workshop Item
Erschienen: 2022
Editors: Blanas, Spyros ; May, Norman
Creators: El-Hindi, Muhammad ; Ziegler, Tobias ; Heinrich, Matthias ; Lutsch, Adrian ; Zhao, Zheguang ; Binnig, Carsten
Type of entry: Bibliographie
Title: Benchmarking the Second Generation of Intel SGX Hardware
Language: English
Date: 13 June 2022
Publisher: ACM
Book Title: DaMoN'22: Data Management on New Hardware
Event Title: SIGMOD '22: International Conference on Management of Data
Event Location: Philadelphia, USA
Event Dates: 13.06.2022
DOI: 10.1145/3533737.3535098
Abstract:

In recent years, trusted execution environments (TEEs) such as Intel Software Guard Extensions (SGX) have gained a lot of attention in the database community. This is because TEEs provide an interesting platform for building trusted databases in the cloud. However, until recently SGX was only available on low-end single socket servers built on the Intel Xeon E3 processor generation and came with many restrictions for building DBMSs. With the availability of the new Ice Lake processors, Intel provides a new implementation of the SGX technology that supports high-end multi-socket servers. With this new implementation, which we refer to as SGXv2 in this paper, Intel promises to address several limitations of SGX enclaves. This raises the question whether previous efforts to overcome the limitations of SGX for DBMSs are still applicable and if the new generation of SGX can truly deliver on the promise to secure data without compromising on performance. To answer this question, in this paper we conduct a first systematic performance study of Intel SGXv2 and compare it to the previous generation of SGX.

Uncontrolled Keywords: systems_funding_50900240, systems_funding_50001258, systems_athene, systems_trustdble
Additional Information:

Art.No.: 5

Divisions: 20 Department of Computer Science
20 Department of Computer Science > Data and AI Systems
Date Deposited: 05 Apr 2023 13:38
Last Modified: 08 Aug 2023 11:53
PPN: 510438652
Export:
Suche nach Titel in: TUfind oder in Google
Send an inquiry Send an inquiry

Options (only for editors)
Show editorial Details Show editorial Details