Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

https://github.com/skalenetwork/sgxwallet

sgxwallet is the first-ever opensource high-performance hardware secure crypto wallet that is based on Intel SGX technology. First opensource product on Intel SGX whitelist. Scales to 100,000+ transactions per second. Currently supports ETH and SKALE, and will support BTC in the future. Sgxwallet is under heavy development and use by SKALE network.
https://github.com/skalenetwork/sgxwallet

blockchain bls-signature cpp ecdsa ethereum hardware-crypto-wallet proof-of-stake sgx skale-network trusted-computing trusted-execution-environment ubuntu wallet

Last synced: 5 days ago
JSON representation

sgxwallet is the first-ever opensource high-performance hardware secure crypto wallet that is based on Intel SGX technology. First opensource product on Intel SGX whitelist. Scales to 100,000+ transactions per second. Currently supports ETH and SKALE, and will support BTC in the future. Sgxwallet is under heavy development and use by SKALE network.

Lists

README 

        
# sgxwallet: SKALE SGX-based hardware crypto wallet 



[![Discord](https://img.shields.io/discord/534485763354787851.svg)](https://discord.gg/vvUtWJB) [![CII Best Practices](https://bestpractices.coreinfrastructure.org/projects/3581/badge)](https://bestpractices.coreinfrastructure.org/projects/3581)



## Intro



**sgxwallet** is a next generation hardware secure crypto wallet that is based on **Intel SGX** technology. It currently supports **Ethereum** and **SKALE**, and will support **Bitcoin** in the future.



**sgxwallet** runs as a network server.  Clients connect to the server, authenticate to it using 

TLS 1.0 protocol with client certificates, and then issue requests to the server to generate crypto 

keys and perform cryptographic operations. The keys are generated inside the secure SGX enclave and never

leave the enclave unencrypted.  



The server provides an initial registration service to issue client certificates to the clients.

The administrator manually approves each registration.



**sgxwallet** has been tested on **Ubuntu Linux 18.04**.



## An important note about production readiness



The sgxwallet server is still in active development and therefore should be regarded as _alpha software_. The development is still subject to security hardening, further testing, and breaking changes.  **This server has not yet been reviewed or audited for security.**  Please see [SECURITY.md](SECURITY.md) for reporting policies.



![](https://github.com/skalenetwork/sgxwallet/workflows/Build,%20test%20and%20push%20sim%20mode%20container/badge.svg)



## Running sgxwallet



### Clone this repo



As you probably suspect, the first thing to do is to clone this repository and all it is sub-repositories. 



```bash

git clone https://github.com/skalenetwork/sgxwallet.git --recurse-submodules

```



### Try in simulation mode



The easiest way to try the sgxwallet server is to run a docker container in insecure simulation mode that emulates an SGX processor. Once you are familiar with the server, you can enable sgx on your machine and run it in secure production mode.



First install docker-compose if you dont have it



```bash

sudo apt-get install docker.io docker-compose

```



Then run sgxwallet using docker-compose



```bash

cd run_sgx_sim; sudo docker-compose up

```



Note: you need a machine that supports Intel AVX512 instruction set.  Most modern Intel CPUs support it. To verify you machine supports AVX512, run



```

cat /proc/cpuinfo | grep avx512

```



Note: sgxwallet requires docker-compose for correct operation. You must always use 

docker-compose and avoid using raw docker tools.



Note: simulation mode is only to try sgxwallet. 

In production, you need to run sgxwallet on a server that supports SGX.

Never run a production sgxserver in simulation mode.  



## Admin guide



If you are a SKALE validator and want to run sgxwallet for testnet or mainnet usage, you need

 a SGX-capable server.  

Please refer to Admin guide for details on how to setup sgxwallet in a secure hardware mode 

 [docs/admin-guide.md](docs/admin-guide.md).



## Developer guide



If you are a SKALE developer and want to build sgxwallet from source, please refer to Developer

guide [docs/developer-guide.md](docs/developer-guide.md).



## Contributing



See [contributing](.github/CONTRIBUTING.md) for information on how to contribute.



## Libraries used by this project



-   [Intel-SGX-SSL by Intel](https://github.com/intel/intel-sgx-ssl)

-   [LevelDB by Google](https://github.com/google/leveldb)

-   [libBLS by SKALE Labs](https://github.com/skalenetwork/libBLS)

-   [libff by SCIPR-LAB](http://www.scipr-lab.org/)

-   [Linux SGX Driver by Intel](https://github.com/intel/linux-sgx-driver)

-   [SGX-GMP by Intel](https://github.com/intel/sgx-gmp)

-   [SGX Software Enable by Intel](https://github.com/intel/sgx-software-enable)



## License



[![License](https://img.shields.io/github/license/skalenetwork/sgxwallet.svg)](LICENSE)



All contributions to sgxwallet are made under the [GNU Affero General Public License v3](https://www.gnu.org/licenses/agpl-3.0.en.html). See [LICENSE](LICENSE).



Copyright (C) 2019-Present SKALE Labs.