May 14-17, 2019 | JW Marriott Parq Vancouver, Canada

FIPS 140-2 Validations in a Secure Enclave (G13b)

09 May 2018
16:15 - 16:45

FIPS 140-2 Validations in a Secure Enclave (G13b)

Secure enclaves are becoming a popular way to separate and protect sensitive code and data from other processes running on a system. A FIPS 140-2 validated cryptographic software module is currently required to run power-on self tests when loaded, but security of the module can be taken one step further by validating the module inside a secure enclave, such as Intel SGX.

wolfSSL has been working on FIPS 140-2 validating the wolfCrypt library running inside an Intel SGX enclave. This session will discuss the advantages, challenges, and process of FIPS 140-2 validating a cryptographic software module inside Intel SGX and how the same process could be applied to other secure enclave environments.