An overview of PIM-Enclave. Compared to the baseline, the architecture adds access control for memory banks and AES-capable DMA engine to ensure confidentiality and integrity of the computed data inside memory. The proposed modifications are colored in grey.

Source publication

Fig. 1: An example program that offloads computation to PIMEnclave. The...

Fig. 2: An overview of PIM-Enclave. Compared to the baseline, the...

Fig. 4: Structure of AES-capable DMA engine in PIMEnclave....

Fig. 5: Memory access pattern exposed on the bus of CPU-based hash...

Fig. 6: The memory throughput with and without software AES encryption...

PIM-Enclave: Bringing Confidential Computation Inside Memory

Preprint

Full-text available

Nov 2021

Demand for data-intensive workloads and confidential computing are the prominent research directions shaping the future of cloud computing. Computer architectures are evolving to accommodate the computing of large data better. Protecting the computation of sensitive data is also an imperative yet challenging objective; processor-supported secure en...

Context 1

... PIM-Enclave design retrofits the generalized baseline PIM design to support confidential computing. Figure 2 shows the overall design of PIM-Enclave with the proposed modifications. Key storage containing the root endorsement key (EK) and ROM are added to service attestation and loading requests from the host enclave. ...

View in full-text

An overview of PIM-Enclave. Compared to the baseline, the architecture adds access control for memory banks and AES-capable DMA engine to ensure confidentiality and integrity of the computed data inside memory. The proposed modifications are colored in grey.

Context in source publication