SIGY: Breaking Intel SGX Enclaves with Malicious Exceptions & Signals

arXiv:2404.13998v1 Announce Type: new
Abstract: User programs recover from hardware exceptions and respond to signals by executing custom handlers that they register specifically for such events. We present SIGY attack, which abuses this programming model on Intel SGX to break the confidentiality and integrity guarantees of enclaves. SIGY uses the untrusted OS to deliver fake hardware events and injects fake signals in an enclave at any point. Such unintended execution of benign program-defined handlers in an enclave corrupts its state …

arxiv attack breaking confidentiality cs.cr events handlers hardware integrity intel malicious programming recover register respond sgx signals