This release is transitional, with some bug fixes, and does the preparation for next release.
One major feature in this release is the RA-TLS prototype establishing the trust between hardware-based remote attestation and TLS secure channel. This design provides more flexibilities on enclave management and communication. Current PoC is based on sgx-ra-tls project. In next release, we will provide the complete implementation.
Another major feature is with regard to the overhead of enclave creation. As all we know, the overhead of enclave creation is fundamental and difficult to be avoided. In addition, shim-rune introduces the procedure of bundle conversion which increases the launch time during enclave creation. Both of them will be resolved in next release.
In this binary release, the prebuilt packages for Ubuntu 18.04 server and CentOS 8.1 are provided (see the detachments).
CHANGELOG
- Provide RA-TLS PoC
- Implement Enclave Pooling Manager framework
- Provide Dragonwell 11 (LTS for OpenJDK 11) reference image
- Support Occlum 0.15.1
- Enhance skeleton enclave runtime