A Journey Into Intel’s SGX

This talk will give a deep dive into Intels SGX technology by way of a story. First, it will cover an overview of computer architecture as background. Following that, will be a walk through of one version of the hardware and it’s flaws, what changed in the next version... and it’s continued and escalated flaws as speculative execution attacks became center stage. The talk will go over the attacks mean as a threat and how they work. The part of the story that will truly be interesting though is not the very technical attacks and overview, shocker even though that is quite cool, BUT a very hidden and interesting detail in the way the technology is licensed and it’s effect. Come to the talk for the journey, stay for the laughs and horrors.


Jessie Frazelle

Engineer @github, Xoogler, Ex-Docker Core Maintainer

Jessie Frazelle is a independent consultant. She is a computer programmer who has worked at GitHub, Microsoft, Google, Docker and various companies and startups before that. She’s worked on a lot of the open source projects in the container ecosystem as well as having a few projects of her own.

Read more
Find Jessie Frazelle at:


Westminster, 4th flr.


Modern Operating Systems


eBPFOperating Systems


From the same track

SESSION + Live Q&A Interview Available


Why aren't operating systems more like applications?We live in an era of application microservices, even nanoservices. Each application serves precisely its purpose, living for exactly how long it needs. When we need it to do something else, we either create a distinct service, or rebuild...

Avi Deitcher

Managing Consultant @Atomic Inc.

SESSION + Live Q&A Interview Available

Fine-Grained Sandboxing With V8 Isolates

In an ideal world, code would always run as close as possible to the things with which it communicates -- end users, storage, external APIs, etc. However, most software stacks are only cost-effective if applications are long-running, handling many events in one place. We need a new approach that...

Kenton Varda

Tech lead @Cloudflare Workers

SESSION + Live Q&A Unikernel

Unikernels Aren’t Dead, They’re Just Not Containers

For years we’ve been observing the Unikernel concept gather and then lose steam. Unikernels where put forward as the next evolutionary step beyond containers. However, unikernels are fundamentally different beasts and they really have very little in common with containers. I’ll try to look...

Per Buer

CEO @IncludeOS

SESSION + Live Q&A Operating Systems

The Future of Operating Systems on RISC-V

RISC-V is a free and open instruction set architecture that is seeing frenzied development activity. It also represents a new development model for the hardware industry, enabling cross-industry collaboration on a common standard and spawning a range of open source implementations. This ability...

Alex Bradbury

Co-Founder and Director @lowRISC, LLVM hacker


Panel: Secure Isolation of Applications

Applications have been isolated by lots of different means: processes, virtual machines, containers, and new methods are appearing such as SGX and in-process isolates. What is secure? Have Spectre and Meltdown changed the landscape? What should we use? Ask our expert panel.

Justin Cormack

Developer @Docker

Jessie Frazelle

Engineer @github, Xoogler, Ex-Docker Core Maintainer

Per Buer

CEO @IncludeOS

Allison Randall

Director at Eigenstate

Kenton Varda

Tech lead @Cloudflare Workers

View full Schedule