Secure Processing Flashcards

1
Q

What is secure processing?

A

A mechanism for ensuring confidentiality, integrity, and the availability of software code and data as it is executed in volatile memory.

In HUMAN language, it means the way to protect the processed information that’s being executed in your volatile memory.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Processor Security Extensions

A

Low-level CPU changes that enable secure processing. Built into the processor.

AMD = Secure Memory Encryption (SME), Secure Encrypted Virtualization (SEV)
Intel = Trusted Execution Technology (TXT), Software Guard Extensions (SGX)

Note: This is all you need to know about them for the exam.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Trusted Execution

A

The CPU’s security extensions invoke the TPM to ensure that a trusted operating system is running.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Secure Enclave

A

An extension that allow a trusted process to create an encrypted container for sensitive data.

This helps prevent buffer overflow attacks, and can store encryption keys and other sensitive data inside the secure enclave.

Note: Once we have a trusted operating system, we can create a secure enclave to store the sensitive data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Atomic Exectution

A

Certain operations that should only be performed once or not at all, such as initializing a memory location.

There are extensions in place to ensure that these atomic executions can not be re-used or hijack an atomic execution.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Bus Encryption

Note: Data Bus

A

Data is encrypted by an application prior to being placed on the data bus.

In order for this to work, we have to ensure the device at the receiving end is also trusted to decrypt the data.

Note: A data bus is a system within a computer or device, consisting of a connector or set of wires, that provides transportation for data. Different kinds of data buses have evolved along with personal computers and other pieces of hardware.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly