mystikos

2022-03-26 · 1 min read

• #mystikos
• #docker
• #sgx
• #libOS

Github: https://github.com/deislabs/mystikos Site: ??? Related: gramine

Mystikos is a #libOS kernel / libc-injected runtime for running Linux software in SGX.

• Goal: lift-n-shift existing application with little or no modification into enclave.
• Goal: target multiple enclave types
• Built by team inside Azure

Architecture #

• C-runtime based on musl, but also glibc-compatible.
• a #libOS like micro-kernel
• Linux kernel target interface (TCALL)
• CLI and other related utils

Current available targets:

1. SGX (via Open Enclave SDK)
2. Linux (for simulation and testing on non-SGX hardware)

Examples #

• Rust Hello World
  • https://github.com/deislabs/mystikos/blob/main/doc/user-getting-started-rust.md
• Attested TLS handshake
  • https://github.com/deislabs/mystikos/tree/main/solutions/attested_tls
• TEE-aware application
  • https://github.com/deislabs/mystikos/blob/main/doc/user-getting-started-tee-aware.md