By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Can you run multiple programs inside one AWS Nitro Enclave at the same time?

0

The AWS Nitro Enclave Concepts states that "An enclave is a virtual machine with its own kernel, memory, and CPUs" and "An enclave image file (.eif) includes a Linux operating system, libraries, and enclave applications that will be booted into an enclave when it is launched".

So, if the Enclave is in fact a Linux VM, can we run multiple programs inside one Nitro Enclave instance at once (as opposed to creating separate Nitro Enclave instances for each program)? The documentation makes be believe this is possible, but I have not found an example illustrating how this would be done---the closest example creates multiple enclave instances.

And if you can run multiple programs in one Enclave instance, do they have the same safety guarantees that programs would normally have (e.g., memory safety between programs)?

Topics
Compute
Tags
Amazon EC2
Language
English
Bear
asked a year ago228 views
1 Answer
0

It is possible to run multiple programs in an enclave. But the question to ask is, why would you want to do that if you want isolation between those multiple programs to begin with? Package each program into a separate enclave if you want that isolation between them, most importantly run only trusted pieces of software inside the enclave, this is not a sand boxing solution.

Sudhir
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content