Pinned
In the works ... for the anti-TEE maxis out there; a cry to the cypherpunk culture to enter into the hardware world and take the power back.
Research Directions for Verifiable Crypto-Physically Secure TEEs
Sylvain Bellemare 💫✨🧮
1,370 posts
Sylvain Bellemare 💫✨🧮
@sbellem
r&d ~ open, verifiable, crypto-physically secure hardware (TEEs) ~ arxiv.org/abs/2410.03183
Planet Earth
Joined February 2009
- far from being complete, or perfect, but putting this here for now:
- Does it make sense to compare TEEs to ZKP/FHE/MPC? I doubt. Unless we are speaking of verifiable (attestable) crypto-physically secure TEEs, that can provably: 1) secure the root-of-trust against physical attacks 2) secure computations against physical attacks 3) secure
- If you're looking for reasons not to trust current TEEs like Intel SGX, or any hardware for that matter, then this talk by @LennertWo, will help you. youtu.be/PlNdcs2ZWHc verifiable compute + verifiable hardware --> web4
- An invitation to look beyond the horizon Is cryptography built-in into our universe? If it is, then can we view TEEs as an attempt to harness the inherent cryptographic nature of reality? If not, then are TEEs a pipe dream? Join us to share your thoughts! We'll exploreJoin us this Wednesday, Oct 9th at 18:00 CEST for a poetic conversation with @sbellem and @Julio_Linares_ on Verifiable Crypto-Physically Secure TEEs! Tune in live: x.com/i/spaces/1ynKO… This session also sets the stage for our initial TEE stakeholder meeting on Oct 14th.
- Quite obvious that verifiable hardware is as vital as privacy is. Also quite obvious that verifiable hardware will meet resistance just like privacy does.
- Cypherpunks, cryptographers, and decentralization aficionados (and myself) being asked about the questionable popularity of TEEs, threatening the decentralization equilibrium. "The TEEs are what we thought they were. We played them in 2016. Who the hell takes privacy in 2016
- Replying to @_markel___Are you referring to the global wrapping logic key (GWK), mentioned in the Intel SGX Explained paper?
- That's crypto people trying to use Intel SGX. A few loops perhaps, but we all know we're playing with fire, and very soon, we'll have no choice but to build the real TEE that we really need. It's a mindset problem. Change your mind, and build the chips.He just fulfilled everyone's childhood dream.
- That is the one core problem that has been worrying me about Intel SGX, AMD SEV and the likes, as from what we know they store the root secrets in efuses, and so does Apple by the way, and probably most hardware. Talk at youtu.be/z33TSv9EXBQ, thanks to @gabreal for sharing!✍️ Nano-Enigma: Uncovering the Secrets Within eFuse Memories media.defcon.org/DEF%20CON%2032…
- To put this in the context of Intel SGX, if they succeeded to extract the Fuse Encryption Key (GWK) like they did for Intel CSME, then they could decrypt the encrypted Seal + Provisioning Secrets stored in efuses, which they could extract in x.com/_markel___/sta…
Replying to @DylangerDalyIt's the key used to encrypt security fuses (Chipset Key and EPID root key) before burning them during the silicon manufacturing - The web3/blockchain/cypherpunk community has arguably the highest standard when it comes to security and privacy. It has accelerated, and keeps on accelerating cryptography, distributed systems, game theory, and other relevant disciplines in unimaginable ways. Secure hardwareHear ALL the amazing calls of Freddie Freeman's historic grand slam that ended Game 1 of the #WorldSeries 🎙️
00:00 - Replying to @sbellem“Is my computer trustworthy? How do I know it was built correctly, and will it execute my instructions faithfully? These are the questions that hardware verification aims to answer.” — @bunniestudios in bunniestudios.com/blog/category/…
