Thanks to visit codestin.com
Credit goes to github.com

Skip to content

enclaive/enclaive-docker-ruby-sgx

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
app
app
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
entrypoint.sh
entrypoint.sh
 
 
ruby.manifest.template
ruby.manifest.template
 
 

Repository files navigation

Ruby-SGX Demonstration: Write a file into shared protected Volume

In this demo the string Hello SGX World from Ruby is written into the file HelloAgain.txt. The Ruby application is in folder /app/Hello.rb.

  • The Docker entrypoint executes first Hello.rb with ruby and renames the file to HelloAgainUnsafe.txt.
  • Next it executes Hello.rb again, this time with ruby-sgx.
    • Note, when ruby-sgx writes a file it is encrypted with a key only the container it knows.
  • Both files are written to the shared folder /tmp/secret.
  • We observe that in the shared folder
    • file HelloAgainUnsafe.txt is in plaintext, while
    • file HelloAgain.txt is encrypted

Building

docker compose build

Running

docker compose up

Compare the files:

cd /tmp/secret/
ls
cat HelloAgain.txt
cat HelloAgainUnsafe.txt

About

SGX-ready Enclaive Docker Image for Ruby

Topics

ruby docker kubernetes devops cybersecurity cloud-computing ruby-on-rails sgx privacy-enhancing-technologies sgx-enclave cloudsec

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

1 star

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages