通信学报2024,Vol.45Issue(z1):31-40,10.DOI:10.11959/j.issn.1000-436x.2024214
SGX-based LibOS中系统调用转发机制研究
Research on system call forwarding mechanism of SGX-based LibOS
摘要
Abstract
SGX-based LibOS are designed to run unmodified applications within SGX Enclave,but differences in their architecture,system call simulation,and system call forwarding can make them difficult to use and debug.To overcome these challenges,a dynamic testing framework was introduced that traced system calls and verified their behaviors in various SGX-based LibOS.This framework compared the execution of system calls within the LibOS to their execution on regular Linux hosts,analyzing the differences in call forwarding mechanisms,Linux feature replication,and runtime support for programming languages.The study aims to highlight where improvements are needed and hopefully provides guidance for future research in this area.关键词
IntelSGX/系统安全/库操作系统/系统调用Key words
Intel SGX/system security/LibOS/system call分类
自科综合引用本文复制引用
刘西蒙,黄应康,刘维杰,范倍汐,章恬,张杰..SGX-based LibOS中系统调用转发机制研究[J].通信学报,2024,45(z1):31-40,10.基金项目
国家自然科学基金资助项目(No.62072109) (No.62072109)
福建省自然科学基金资助项目(No.2021J06013)The National Natural Science Foundation of China(No.62072109),The Natural Science Foundation of Fujian Province(No.2021J06013) (No.2021J06013)
