No description, website, or topics provided.
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.
enclave-hammer initialize repo Sep 1, 2018
phy-module initialize repo Sep 1, 2018
Makefile initialize repo Sep 1, 2018 x Sep 1, 2018

The SGX-Bomb attack

SGX-Bomb launches the Rowhammer attack against enclave memory to trigger the processor lockdown. If arbitrary bit flips have occurred inside the enclave because of the Rowhammer attack, any read attempts to the enclave memory results in a failure of integrity check so that the processor will be locked, and the system should be rebooted.

This repository contains proof-of-concept code snippets of the SGX-bomb attack, including

  1. A kernel module to retrieve physical addresses of the enclave pages
  2. An enclave program to launch SGX-bomb attack


We evaluated the effectiveness of the SGX-Bomb attack in a real environment with DDR4 DRAM; it takes 283 s to hang the entire system with the default DRAM refresh rate, 64 ms.

Kernel version: 4.15.0-33-generic

Intel SGX-SDK : SGX-2.2

More details