Simple script:
$ SGX_MODE=HW make -j
$ make runSuspended
cargo-pobfv/
verifier/
Can verify:
- If
unsafeis forbidden in the source code files - If OCALL(s) potentially sensitive leak
- If Rust compiler can compile the code
Automatic Check
- Provide a library to wrap unsafe code
- Transfer types directly across enclave boundry
- Admit this problem as a deficit
- Zone Allocator and its verification
- Verifier in Rust?
- Formal proof of PoBF constraints partially done
- Runtime Being Forgotten report
- Trusted & verifiable 3rd-party build
- Meaningful attestation
- Trusted key exchange
- Apply PoBF on Teaclave
- Side-channel mitigations