Closed Laisky closed 2 years ago
Similar to the SGX LibOSes, these environment variables only exist inside the enclave and aren't visible or accessible from the host.
Similar to the SGX LibOSes, these environment variables only exist inside the enclave and aren't visible or accessible from the host.
Thanks for the answer, I went to study the principle of marblerun, I misunderstood it before
I noticed that if you let the edgelessdb run in marblerun mode, marblerun injects the password(
masterKey
) into the container's environment variableswe should assume that the platform is untrustworthy and protect our applications through Enclave. But the platform admin is able to view the environment variables of the container. So the admin can get the database encrypting paasword by looking at the environment variables?