Home

Awesome

SGX-hardware list

This is a list of hardware which supports Intel SGX - Software Guard Extensions.

Build Status

Desktop

The CPU and the motherboard BIOS must support SGX. SGX is turned off by default and must be enabled via MSR.IA32_Feature_Control.SGX_Enable. Only the BIOS can make changes to the IA32_Feature_Control.

Desktop CPUs affected by the product change notification from 2015

Use the ark.intel.com database to list all Intel CPUs that have the SGX feature.

Be cautious with the following 2015 i7,i5 and E3 CPUs. According to the Product Change Notification from October 1, 2015. Only the listed CPUs with the following S-Spec Numbers are able to execute SGX instructions. For all other CPUs the Intel CPU database should be correct.

Marketing NameProcessor#Post-Conversion S-Spec
Intel® Corei7-6700KSR2L0
Intel® Corei5-6400TSR2L1
Intel® Corei7-6700SR2L2
Intel® Corei7-6700TSR2L3
Intel® Corei5-6600KSR2L4
Intel® Corei5-6600SR2L5
Intel® Corei5-6500SR2L6
Intel® Corei5-6400SR2L7
Intel® Corei5-6500TSR2L8
Intel® Corei5-6600TSR2L9
Intel® Xeon®E3-1280 v5SR2LC
Intel® Xeon®E3-1240 v5SR2LD
Intel® Xeon®E3-1230 v5SR2LE
Intel® Xeon®E3-1270 v5SR2LF
Intel® Xeon®E3-1220 v5SR2LG
Intel® Xeon®E3-1260L v5SR2LH
Intel® Xeon®E3-1225 v5SR2LJ
Intel® Xeon®E3-1275 v5SR2LK
Intel® Xeon®E3-1245 v5SR2LL
Intel® Xeon®E3-1235L v5SR2LM
Intel® Xeon®E3-1240L v5SR2LN

Checkout Intel ARK specifications for newer CPU models with SGX support.

CPUs without Platform Service Enclave functionality

As per the last comment on this thread, Intel Xeon E3 processors as of today (Jul. 2017) do not have an Intel Management Engine. Therefore, the kernel will never be able to expose the device /dev/mei0. What this means in terms of SGX is that Trusted Platform Service Functions (monotonic counters, trusted time) are not available on Xeon E3.

The following sgx_tservice functions are not available:

    sgx_create_pse_session
    sgx_close_pse_session
    sgx_get_ps_sec_prop
    sgx_get_trusted_time
    sgx_create_monotonic_counter_ex
    sgx_create_monotonic_counter
    sgx_destroy_monotonic_counter
    sgx_increment_monotonic_counter
    sgx_read_monotonic_counter

@lacabra discussed a workaround in issue 43:

... And while not ideal, you can circumvent these, so you can arguably have fully capable SGX instances: you should be able to open a TLS connection to an NTP server you trust from within the enclave to obtain a source of trusted time. If you think of trusted monotonic counter as an instance of trusted time, you could get both using the same mechanism (these are suggestions from an Intel SGX architect).

Desktop Mainboards

VendorModelDriver TypeVersionSourceRelease Date
ASRockE3V5 WSBIOS7.10see Issue 1303 Feb 2017
ASRockZ270 Extreme 4--see Issue 152017
ASRockZ370 Gaming ITXBIOS1.4see Issue 362017
MSIH170 Gaming M3 BoardBIOS-see Issue 214 May 2017
GigabyteGA-Z270MX-Gaming 5BIOSF3see Issue 204 May 2017
GigabyteZ370 AORUS Ultra Gaming (rev. 1.0)BIOS-see Issue 3330 Nov 2017
GigabyteZ370 AORUS Ultra Gaming (rev. 2.0)BIOSF4see Issue 531 Oct 2018
MAXSUNMS-EARTHSHAKER H310M-VH--see Issue 54 about the outdated BIOS!10 Oct 2018
MSIZ370-A PROBios update required-see Issue 5628 Dec 2018
ASRockZ390 Pro 4BIOS4.3see Issue 6416 Sep 2019

Notebooks

The following devices should support SGX according to available drivers. Check the detailed information about the supported models on the individual driver sites.

VendorModelDriver TypeVersionSupported OSSourceRelease Date
DellInspiron 11 i3153, Inspiron 11 i3158, Inspiron 13 i7353, Inspiron 13 i7359, Inspiron 15 i7568Chipset Driver1.0.26920. 1393, A00Windows 8.1 64-bit, Windows 10 64-bitdell.com10 Sep 2015
DellInspiron 15 7000 Series 7559BIOS1.0.3Windows/DOSdell.com09 Oct 2015
HPHP 240 G4 Notebook PC, HP 246 G4 Notebook PC, HP Notebook 14g, HP Notebook 14qChipset1.0.26448. 1348 REV: A PASS: 5Microsoft Windows 10 64ftp.hp.com07 Aug 2015
HPENVY 15 Notebook PCChipset1.0.26805. 1389 REV: A PASS: 4Windows 10 64bit, Windows 7 Prof.ftp.hp.com17 Aug 2015
HPHP ENVY x360 ConvertibleChipset1.0.26805.1389 REV: A PASS: 5Windows 10 64ftp.hp.com04 Sep 2015
HPHP Spectre x2 Detachable Ultrabook PCChipset1.0.26805. 1389 REV: A PASS: 9Windows 10 64ftp.hp.com02 Oct 2015

Hardware with out-of-the-box SGX support

Newer devices have out of the box SGX BIOS support. Sometimes it is mentioned in their documentation. If you have a newer device and see SGX in the BIOS, message me so I can add the device to the list. If you need a SGX capable server have a look at the Intel SGX server block. It consists of a complete server with Xeon processor, ram, mainboard and drives. Driver issues should't be a problem.

DeviceVendorModelSourceDateConfirmed
LaptopLenovoThinkPad P70, P50S, T560, T460p, T460s, T460, X260, X230see Issue 722 May 2016P50, T460s, X260, X230
LaptopLenovoYOGA 720, Carbon X1see Issue 492 Jul 2018YOGA 720, Carbon X1
LaptopLenovoIdeapad Yoga C940see issue 7713 Mar 2021Ideapad Yoga C940
PCDellnewer OptiPlex, Latitude, Vostro, Precisionsee Issue 520 Apr 2015Precision 7710
Desktop PCDellOptiplex 5040dell.com technical-spec-sheet.pdf3 Dec 2015
LaptopDellXPS 13see Issue 12, see Issue 16, Issue 69, Issue 7520 Jan 2017XPS 13 9560, 9360, 9380
LaptopDellAlienware 13 R3mail30 Jan 2017Alienware 13 R3 (Kaby Lake i7-7700HQ)
LaptopDellAlienware 15 R3see PR 3005 Sep 2017Alienware 15 R3 (Skylake i7-6820HK)
LaptopDellInspiron 5378, 5578, 7378, 7579, 7779see Issue 1818 Apr 2017Inspiron 15 5578 2-in-1 with Intel Kabylake 7500U
LaptopDellLatitude 7280see Issue 5226 Sep 2018Dell Latitude 7280
LaptopDellPrecision 5750PR 8617 Jan 2022Dell Precision 5750 with Intel Xeon W-10885M
Mini PCIntel NUC KitNUC6i3SYK, NUC6i7KYK, NUC6i5SYK, NUC6i3SYH, NUC6i5SYH, NUC7i3BNH, NUC8i5BEKSGX software for NUC30 Jun 2016NUC7i3BNH, NUC8i5BEK
Compute StickIntel Compute StickSTK2m364CCsee Issue 3112 Nov 2017STK2m364CC
LaptopHPPavilion 15-ab251ursee Issue 1418 Feb 2017HP Pavilion 15-ab251ur, CPU i7-6500U
LaptopASUSX456UAsee Issue 1818 Apr 2017
WorkstationHPZ2 Mini G3see Pull request 1921 Apr 2017HP Z2 Mini G3, CPU Xeon E3-1245 v5
WorkstationHPHP Z240 Tower Workstationsee Pull request 2316 Mar 2017HP Z240 Tower Workstation, Intel(R) Xeon(R) CPU E3-1240 v5 @ 3.50GHz
ServerSupermicrosystem 5019-MR, mainboard X11SSH-F BIOS 1.0b or 2.0bPressrelease see Issue 619 May 2016platform services only on specific ME versions
ServerDellPowerEdge R230, BIOS 2.4.3 or latermail23 Feb 2018Dell R230, CPU Xeon 1270 v6, BIOS v2.4.3 and BIOS v2.5.0
ServerDellPowerEdge R340, BIOS 2.2.3see Issue 7016 May 2020Dell PowerEdge R340
ServerHPEProLiant DL20 Gen10PR 8822 Jan 2022HPE ProLiant DL20 Gen10 with Xeon E-2276G
Mini PCIntel NUC KitNUC7i5BNHsee Issue 679 Oct 2019NUC7i5BNH with I5-7260U
ServerDellPowerEdge R330Simply Staking's Testing (only works baremetal)Dec 2020Dell PowerEdge R330
ServerDellPowerEdge R340Simply Staking's Testing (works baremetal and with vSphere 7 vSGX)Dec 2020Dell PowerEdge R340 (Intel Xeon E-2288G)
Mini PCIntel NUC KitNUC10i3FNKNPR #90Apr 2022NUC10i3FNKN, Intel Core i3-10110U
Desktop PCDellOptiplex 7070 SFFPR #90Apr 2022Optiplex 7070, Intel Core i5-9500 CPU
Mini PCIntel NUC KitNUC8i7HNKsee Issue 97Aug 2022NUC8i7HNK with i7-8705G

Hardware with SGX2 support

It seems that Intel Gemini Lake processors support SGX2. We will list the confirmed devices here as soon as they get reported.

DeviceVendorModelSourceDateConfirmed
Mini PCIntel NUC KitNUC7CJYH, NUC7PJYHIssue 48, Pull Request 684 Apr 2019NUC7CJYH, NUC7PJYH
LaptopDellXPS 13 9300Issue 7524 Feb 2021XPS 13 9300
LaptopLenovoIdeapad Yoga C940Issue 7713 Mar 2021Ideapad Yoga C940
ServerSuperMicroX12SPM-TFPR 8718 Jan 2022SuperMicro X12SPM-TF with Xeon Gold 5315Y

Cloud Vendors

Packet.net, IBM and Alibaba have Bare Metal Instances available that allow the execution of SGX instructions to create secure enclaves in the cloud. See IBM Cloud Bare Metal Instances and Alibaba ECS Bare Metal Instance. If you were able to experiment with SGX in the Cloud, please let us know!

Both AWS and Google have CPUs that capable of SGX but the execution is disabled. We discussed that into detail here. According to a Intel forum post.

VendorServicenameCPU SGX capableSGX activated in BIOSDateSource
AWSEC2 C5 instancesYES, SGX1 and SGX2NO, SGX not activated in BIOSApr 2018Issue 37
AzureAzure Confidential ComputingYES, SGX1YES, SGX1Oct 2023Blog
GoogleN1 instancesYES, SGX1 and SGX2NO, SGX not activated in BIOSApr 2018Issue 38
IBMIBM Cloud Bare Metal InstancesYES, unknown versionYESMay 2018Issue 46
packet.netReserved HardwareYES, SGX1YESApr 2018Issue 44
Alibaba CloudECS Bare Metal InstanceYES, unknown versionYESSep 2018Docs, Issue 50
OVHcloudInfrastructure Dedicated ServersYES, unknown versionYESSep 2019Docs, Issue 66
Alibaba CloudECS Security-enhanced family (public preview)YES, SGX2YESJuly 2021Docs

Notes:

Device with a SGX CPU, but no BIOS support

The following devices have a SGX capable CPU included, but don't have the required BIOS settings. So you cannot execute SGX instructions on those devices. Do NOT buy for SGX development:

DeviceVendorModelSourceDate
LaptopAppleMacBook Pro (15-inch, 2017)Issue 2624 Jul 2017
LaptopAppleMacBook Pro (15-inch, 2018)Issue 5715 Feb 2019
LaptopAppleMacBook Pro (13-inch, 2018)Issue 5825 Feb 2019
LaptopAppleMacBook Pro (16-inch, 2019)PR 8522 Dec 2021
LaptopMicrosoftSurface Book 2Issue 5226 Sep 2018
LaptopRazerBlade (2016)Issue 606 Jul 2019

Compile test-sgx

You can check if SGX is enabled on you system with test_sgx.c. Just compile and run it:

gcc -Wl,--no-as-needed -Wall -Wextra -Wpedantic -masm=intel -o test-sgx -lcap cpuid.c rdmsr.c xsave.c vdso.c test-sgx.c

cl test-sgx.c cpuid.c rdmsr.c xsave.c vdso.c

clang -Wall -Wextra -Wpedantic -masm=intel -std=c2x -Wno-gnu-binary-literal -o test-sgx cpuid.c rdmsr.c xsave.c vdso.c test-sgx.c

See Issue 17 for the execution in Visual Studio.

SGX is available for your CPU but not enabled in BIOS

eg. on 2017 MacBook Pro's

...
Supports SGX
SGX Launch Configuration (SGX_LC): 1
SGX Attestation Services (SGX_KEYS): 0
SGX1 leaf instructions (SGX1): 0
SGX2 leaf instructions (SGX2): 0
...

CPU SGX functions are deactivated or SGX is not supported

Eg. on public clouds or 2015 MacBooks Pro's)

...
Does not support SGX

SGX1 is available for your CPU and enabled in BIOS

Start test-sgx (version 2.0.0) at Mon Nov 20 18:20:43 2023
CPUID is available
The CPU is Genuine Intel
CPUID is capable of examining SGX capabilities
CPU: Intel(R) Core(TM) i7-9700K CPU @ 3.60GHz
  Stepping 13        Model 14           Family 6 
  Processor type 0   Extended model 9   Extended family 0 
Safer Mode Extensions (SMX): 1
Extended feature bits (EAX=7, ECX=0): eax: 00000000  ebx: 029c6fbf  ecx: 40000000  edx: bc000e00
Supports SGX
SGX Launch Configuration (SGX_LC): 1
SGX Attestation Services (SGX_KEYS): 0
SGX1 leaf instructions (SGX1): 1
SGX2 leaf instructions (SGX2): 0
EINCVIRTCHILD, EDECVIRTCHILD, and ESETCONTEXT (OVERSUB-VMX): 0
ETRACKC, ERDINFO, ELDBC, and ELDUC (OVERSUB-Supervisor): 0
EVERIFYREPORT2: 0
Allow attestation w/ updated microcode (EUPDATESVN): 0
Allow enclave thread to decrement TCS.CSSA (EDECCSSA): 1
Supported Extended features for MISC region of SSA (MISCSELECT) 0x00000000
The maximum supported enclave size in non-64-bit mode is 2^31
The maximum supported enclave size in     64-bit mode is 2^36
Raw ECREATE SECS.ATTRIBUTES[63:0]: 00000000 00000436
    ECREATE SECS.ATTRIBUTES[DEBUG] (Debugger can read/write enclave data w/ EDBGRD/EDBGWR): 1
    ECREATE SECS.ATTRIBUTES[MODE64BIT] (Enclave can run as 64-bit): 1
    ECREATE SECS.ATTRIBUTES[PROVISIONKEY] (Provisioning key available from EGETKEY): 1
    ECREATE SECS.ATTRIBUTES[EINITTOKEN_KEY] (EINIT token key available from EGETKEY): 1
    ECREATE SECS.ATTRIBUTES[CET] (Enable Control-flow Enforcement Technology in enclave): 0
    ECREATE SECS.ATTRIBUTES[KSS] (Key Separation and Sharing Enabled): 0
    ECREATE SECS.ATTRIBUTES[AEXNOTIFY] (Threads may receive AEX notifications): 1
Raw ECREATE SECS.ATTRIBUTES[127:64] (XFRM: Copy of XCR0): 00000000 0000001f
EPC[0]: Protection: ci  Base phys addr: 0000000070200000  size: 0000000005d80000
vDSO base address: 0x7ffddbf41000
Printing Symbol Table:
vDSO symbol: __vdso_time
vDSO symbol: getcpu
vDSO symbol: __vdso_clock_getres
vDSO symbol: __vdso_getcpu
vDSO symbol: clock_getres
vDSO symbol: __vdso_gettimeofday
vDSO symbol: LINUX_2.6
vDSO symbol: gettimeofday
vDSO symbol: __vdso_clock_gettime
vDSO symbol: time
vDSO symbol: __vdso_sgx_enter_enclave
vDSO symbol: clock_gettime
Raw IA32_FEATURE_CONTROL: 0000000000060005
    IA32_FEATURE_CONTROL.LOCK_BIT[bit 0]: 1
    IA32_FEATURE_CONTROL.SGX_LAUNCH_CONTROL[bit 17] (Is the SGX LE PubKey writable?): 1
    IA32_FEATURE_CONTROL.SGX_GLOBAL_ENABLE[bit 18]: 1
The SGX Launch Enclave Public Key Hash can be changed
IA32_SGXLEPUBKEYHASH: 72d712fed48f9f2f 5282ca7175d8f132 e40577fe4e7127ca c4e8225afdcf2262
Raw IA32_SGX_SVN_STATUS: 0000000e00020001
MSR_SGXOWNEREPOCH not readable
XSAVE features and state-components
  Maximum size (in bytes) of current XCR0 XSAVE area: 1088
  Maximum size (in bytes) of all-set XCR0 XSAVE area: 1088
  Size (in bytes) of current XCR0+IA32_XSS XSAVE area: 960
  Supported XCR0:     000000000000001f
  Actual    XCR0:     000000000000001f
  Supported IA32_XSS: 0000000000000100
  Actual    IA32_XSS: 0000000000000000
    Register Name    Supported Value Description
    ======== ======= ========= ===== ===========
    XCR0     x87:       yes      set x87 Floating Point Unit & MMX
    XCR0     SSE:       yes      set MXCSR and XMM registers
    XCR0     AVX:       yes      set YMM registers
    XCR0     BNDREG:    yes      set MPX for BND registers
    XCR0     BNDCSR:    yes      set MPX for BNDCFGU and BNDSTATUS registers
    XCR0     opmask:     no    clear AVX-512 for AVX opmask and AKA k-mask
    XCR0     ZMM_hi256:  no    clear AVX-512 for the upper-halves of lower ZMM registers
    XCR0     Hi16_ZMM:   no    clear AVX-512 for the upper ZMM registers
    IA32_XSS PT:        yes    clear Processor Trace
    XCR0     PKRU:       no    clear User Protection Keys
    IA32_XSS PASID:      no    clear Process Address Space ID
    IA32_XSS CET_U:      no    clear Control-flow Enforcement Technology: user-mode functionality MSRs
    IA32_XSS CET_S:      no    clear CET: shadow stack pointers for rings 0,1,2
    IA32_XSS HDC:        no    clear Hardware Duty Cycling
    IA32_XSS UINTR:      no    clear User-Mode Interrupts
    IA32_XSS LBR:        no    clear Last Branch Record
    IA32_XSS HWP:        no    clear Hardware P-state control
    XCR0     TILECFG:    no    clear AMX - Advanced Matrix Extensions
    XCR0     TILEDATA:   no    clear AMX - Advanced Matrix Extensions
    XCR0     APX:        no    clear Extended General Purpose Registers R16-R31
  Supported XSAVE feature flags: 0000000f
    xsaveopt - save state-components that have been modified since last XRSTOR: 1
    xsavec - save/restore state with compaction: 1
    xgetbv_ecx1 - XGETBV with ECX=1 support: 1
    xss - save/restore state with compaction, including supervisor state: 1
    xfd - Extended Feature Disable supported: 0
End test-sgx

That means that you are now able to call the special SGX calls of your CPU. However you will always need the official Intel SGX Drivers including their Launch Enclave to initiate your own enclaves. To be able to execute SGX functions you need both Supports SGX and SGX[1|2] leaf instructions (SGX[1|2]): 1.

Another hint that SGX functions are working is the output of an enclave size eg. The maximum supported enclave size is set.

Contribution

Add more hardware to this list via pull requests or simply via issues.