Open parmegv opened 7 years ago
Thanks and sorry for this issue somehow being missed after all this time. (I have transferred it to Sydent since it seems like it more properly is related to identity servers.)
This is a very interesting area of research. I'm not in charge here but I don't expect this will come from us in the near future, but that's not to say that someone very interested couldn't research it or propose something here.
In the six years since you posted this, it seems various exploits have been found against SGX and perhaps Intel themselves are shying away from the technology (their new consumer CPUs no longer support SGX), however the idea seems interesting enough to keep around anyway and I can see people being interested in researching alternatives.
Description
This week, Signal released an implementation of "private contact discovery". The goal of such as mechanism is to keep the user contact lists hidden from the Signal service. They use SGX to attest that the Open Source server implementation that can reviewed and tested is the one deployed in the real service. For more information, look at https://signal.org/blog/private-contact-discovery/
I was wondering if this is something Matrix could implement too: if the Home Server can make use of SGX (i.e. it is available in the hosting machine).