SGX Switchless Calls Made Configless. (arXiv:2305.00763v1 [cs.CR])

Intel's software guard extensions (SGX) provide hardware enclaves to
guarantee confidentiality and integrity for sensitive code and data. However,
systems leveraging such security mechanisms must often pay high performance
overheads. A major source of this overhead is SGX enclave transitions which
induce expensive cross-enclave context switches. The Intel SGX SDK mitigates
this with a switchless call mechanism for transitionless cross-enclave calls
using worker threads. Intel's SGX switchless call implementation improves
performance but provides limited flexibility: developers need to statically fix …

code confidentiality context data enclave extensions guarantee guard hardware high integrity intel major pay performance sdk security sgx software switches systems transitions