SGX support in BIOS

[fvolk]

The J4105 CPU on the H2 should possibly be able to support SGX according to Intel: https://ark.intel.com/content/www/us/en ... 0-ghz.html

Testing this with https://github.com/ayeks/SGX-hardware reports:

sgx available: 1
sgx 1 supported: 0
sgx 2 supported: 0

...which means according to the docs of the utility that the CPU is capable, but BIOS support is missing.
Searching in the "CPU configuration" of the H2 BIOS, there is no option to enable/disable SGX?

The H2 would be a very nice&cheap node for executing security code, is it possible to add the missing SGX enablement code to the next H2 BIOS release?
(and afair 4K streams from Netflix etc. require also SGX for security, but someone else surely knows more about this?)

[odroid]

We need to learn what it is first.

I don't think Netflix 4K is related to the SGX since Windows + Edge browser can play Netflix 4K videos.

[fvolk]

SGX protects an application's secrets from the rest of the system.
So in video playback it protects the decryption stuff from evil piracy - in theory.
Therefore SGX is sometimes required for very high resolution playback, e.g see
https://www.cyberlink.com/support/faq-c ... o?id=19144

What are the minimum system requirements for Ultra HD Blu-ray movie playback?
To support Ultra HD Blu-ray movie disc playback on the PC, several new technologies are required.
[...]
CPU
[...]
Intel 7th generation (Kaby Lake) Core i processors and above that support the Intel Software Guard Extensions (Intel SGX) technology.