Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
TaLoS: Efficient TLS Termination Inside SGX Enclaves for Existing Applications Link Apache-2.0 C Intel CPU (with SGX)
Linux
SDK TLS library
TaLoS is a TLS library that allows existing applications (with an OpenSSL/LibreSSL interface) to securely terminate their TLS connection. For this, TaLoS places security-sensistive code and data of the TLS library inside an Intel SGX enclave, while the rest of the application remains outside. It can then be used as the building block for a wide range of security-critical applications for which the integrity and/or confidentiality of TLS connections must be guaranteed.

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
SGX aware docker-machine driver for CloudSigma Link Golang C Linux No Middleware
A tool that lets you install Docker Engine on virtual hosts with a pre-set EPC size, and manage the hosts with docker-machine commands

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
SGX-Spark

(code not publicly

released yet)

Apache-2.0 Java/Scala Intel CPU (with SGX)
Linux
No

Big data

framework

SGX-Spark is a modified version of Spark that executes sensitive code and stores sensitive data into a Trusted Execution Environment (i.e., Intel SGX). SGX-Spark guarantees the integrity and confidentiality of the execution of Spark jobs and associated data, while being able to execute native Spark jobs without modifications. SGX-LKL (https://github.com/lsds/sgx-lkl/) is used to support the execution of the JVM inside an SGX enclave.

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
SCBR Link Apache-2.0 C++ Intel CPU (with SGX)
Linux
SDK

Communication

middleware

Content-based routing (CBR) is a flexible and powerful paradigm for scalable communication among distributed processes. It decouples data producers from consumers, and dynamically routes messages based on their content. SCBR is a routing engine to provide both security and performance while executing under the protection of a SGX enclave.

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
Lightweight MapReduce Link Apache-2.0 C++/Lua Intel CPU (with SGX)
Linux
SDK

Processing

framework

Lightweight MapReduce implements the Map and Reduce programming model on top of SCBR. Jobs run inside SGX enclaves and are written in Lua.

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
Asperathos Link Apache-2.0 Python Intel CPU (with SGX)
Linux
SCONE

Processing

framework

Asperathos is a platform to facilitate the deployment and control of applications running in cloud environments. For example, it can provide Quality of Service (QoS) by controlling resources allocated during runtime. Nevertheless, in contrast to other orchestration tools, such as Kubernetes itself or OpenStack Heat, it can be configured to consider application specific metrics and to actuate in a customized fashion.

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
libSEAL Link Apache-2.0 C/C++ Intel CPU (with SGX)
Linux
SDK Library
The goal of the LibSEAL component is to help users discover service integrity violations, such as incorrect processing or data loss, for integrity-assured services and demonstrate unequivocally that a violation has taken place. Let us take the example of Alice who uploaded an important postal receipt to Dropbox for a valuable shipment to her customer. This was a good call since the original receipt was lost and the package was never delivered to the recipient. Unfortunately, as the receipt document got corrupted on the Dropbox server, Alice could not track the package with the postal service, and had to send a new shipment to her client, and suffer both monetary damage and loss of reputation. If Dropbox was using LibSEAL, Alice would have been notified about the file corruption and Dropbox would have been liable for violations of their service and would have set up systems to prevent or repair these.

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
IBBE-SGX Link GNU General Public License v3.0 C/C++, Python Intel CPU (with SGX)
Linux
SDK Library
A new cryptographic access control scheme that is both computationally- and storage-efficient considering a dynamic and large set of membership operations, while offering zero knowledge guarantees. Zero knowledge is guaranteed by executing the cryptographic access control membership operations in a Trusted Execution Environment (TEE). Our scheme is based on Identitybased Broadcast Encryption (IBBE) which is known to be flexible enough to produce small constant policy sizes.

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
SecureStreams Link Apache-2.0 C/C++, Lua Intel CPU (with SGX)
Linux
SDK

Processing

framework

SecureStreams is a middleware framework for developing and deploying pipelines for secure stream processing on untrusted distributed environments. It supports the implementation, deployment, and execution of stream processing tasks in distributed settings as is the case for edge devices. SecureStreams is message-oriented, which integrates with the SSL protocol for data communication and the current version of Intel SGX to deliver end-to-end security guarantees along data stream processing stages.

 

Nome Url Licence Programming Languages Platform SCONE/ Intel SDK necessary Categories
SGX-K8S Link GNU General Public License v3.0 C/C++ Intel CPU (with SGX)
Linux
SDK Kubernetes Extension
Kubernetes extension (Linux device driver enhancement as well as Kubernetes device plugin) for allowing SGX-aware scheduling decisions