Lines Matching full:an

14 For example, an application that processes sensitive data and runs in a VM,
16 application then runs in a separate VM than the primary VM, namely an enclave.
18 An enclave runs alongside the VM that spawned it. This setup matches low latency
21 process running in the primary VM, that communicates with the NE driver via an
26 1. An enclave abstraction process - a user space process running in the primary
27 VM guest that uses the provided ioctl interface of the NE driver to spawn an
34 maps to an enclave start PCI command. The PCI device commands are then
41 for the enclave VM. An enclave does not have persistent storage attached.
43 The memory regions carved out of the primary VM and given to an enclave need to
46 user space [2][3]. The memory size for an enclave needs to be at least 64 MiB.
49 An enclave runs on dedicated cores. CPU 0 and its CPU siblings need to remain
50 available for the primary VM. A CPU pool has to be set for NE purposes by an
54 An enclave communicates with the primary VM via a local communication channel,
61 The application that runs in the enclave needs to be packaged in an enclave
67 Enclave Image Format (EIF); plus an EIF header including metadata such as magic
76 enclave; KMS is an example of service that NE is integrated with and that checks
85 If the enclave VM crashes or gracefully exits, an interrupt event is received by