Intel® SGX enclaves provide hardware enforced confidentially and integrity guarantees for running computations. This is achieved mainly by encrypting all information as it leaves the CPU, effectively shielding data in the memory from external observers.

 

But what is the overhead of running computations inside an enclave? One would expect some overheads due to the added encryption and decryption complexity. In addition, extra security measures such as integrity tests and memory usage limitations can also effect performance. In this blog, we try to shed some light on this question by presenting benchmark results of various operations running inside and outside enclaves.

 

The full article by Danny Harnik (IBM) continues here