Ajuna Leverages TEEs to Enhance Confidentiality and Speed
For a long time, the norm for software execution was that any lower layers of the computing stack could inspect and control the operating software. Among the layers that were affected were the operating system (OS), Virtual Machine Manager (VMM or hypervisor), and any middleware used to manage containers.
As a result, anyone with (legal or illicit) administrative rights could view, alter, disable, and re-configure any other code or data on the system. However, as technology advances, that issue has become less relevant, and Ajuna’s systems are proof of that.
But how did developers work around this issue? How is Ajuna protecting gamer assets in the system if the game software can be hacked? Setting up an isolated environment where data remains secure, even if the operating system is compromised, was the solution to this problem. This is what experts call a Trusted Execution Environment or TEE.
A Trusted Execution Environment (TEE) is a code execution space in which those running the code can be confident that the surrounding environment is trustworthy since it can block threats from the rest of the device. Trusted execution environments are becoming increasingly important to many device types and sectors.
There are different ways to implement a trusted execution environment based on the use case. For example, Ajuna uses SGX and TEEs together to write the information back to the first layer when a player or a team finally wins a match. So, in a sense, it could be compared to a persistent and fast storage system for players to use.
Benefits of Using TEE
TEEs are a relatively new technological solution to address some of the problems mentioned above. They are designed to run applications within CPU-encrypted memory pages so that even the host system administrator cannot view or change the processes running within the TEE instance.
A trusted execution environment enables hardware isolation in a variety of ways. To begin, no gaming software can ever be completely secure. There will inevitably be programming flaws that cheaters can take advantage of. Yet, as hardware and software security capabilities are becoming increasingly unified, Ajuna systems are better capable of protecting sensitive in-game data — even while they are in use — within trusted execution security-certified hardware environments, which cannot even be accessed by the operating system.
Running alongside the operating system and employing both hardware and software, a TEE is designed to provide greater security than traditional processing environments. This is also known as a rich operating system execution environment, or REE, in which the operating system and applications are executed.
Moreover, using the TEE does not limit speed, data storage, or processing power. As a matter of fact, the TEE is powered by the device’s main application processor and its internal memory space; thus, it operates at a fairly high speed. And that is how trusted execution environments help Ajuna to enhance data security through cloud processing, partner collaboration, and separating sensitive processes.
The use of virtual trusted execution environments like Open TEE enables software developers to build secure applications using the GlobalPlatform TEE standard. One such TEE is Intel’s Software Guard Extensions (SGX) system, which is compatible with current hardware. TEE implementation that exemplifies the concept was created by ARM and Intel using TrustZone and SGX technologies. These are two of the most well-known Trusted Execution Environments.
In 2020, Intel announced that it would extend the SGX technology, first introduced with Intel’s Skylake chips five years ago, to a broader range of products, notably the Xeon Scalable Processor known as Ice Lake.
Ajuna’s Use of TEEs — Technologies & Partners
Ajuna implements TEEs with SGX, which is fairly standard in the industry. There are currently a number of cryptographic primitives available for secure computation, including methods like fully homomorphic encryption (FHE) and Zero Knowledge Proofs (ZKPs). The SGX system provides similar security guarantees but is much faster, more affordable, and easier to use today.
Think of a piece of hardware that cannot be cracked open, even by the owner, and even when it is forced open. Such is the promise of Intel SGX and TEEs. SGX is a hardware-based encryption technology integrated into most Intel processors introduced in the last seven years. The feature allows for the creation of enclaves within system memory, which are isolated, hardware-encrypted zones within RAM. As if in a secret vault, enclaves are places that allow applications to work with confidential or sensitive information without risking exposure.
Ajuna works with off-chain TEE workers, established companies like Polycrypt, and companies with similar interests (and, in this case, names) like Anjuna to improve the reliability of Web 3 games for investors and gamers alike. They are also combining the world’s leading game engines with the Polkadot blockchain and utilizing TEEs to drastically reduce latency.
Do you want to take advantage of the full potential of blockchain-based assets in your game? Or perhaps, you are a gamer interested in shaping the future of your favorite game through exploring the world of Web 3 gaming.
Ajuna can provide you with the solutions you seek. Get in touch and discover decentralized gaming’s most exciting frontier.