📄️ Programming model
Enclaves are execution environments isolated from the rest of the system. In the original SGX programming model, the application code is partitioned into trusted and untrusted code. The untrusted code runs in a conventional process. Within this process, one or more enclaves are created that execute the trusted code. The enclave is entered with an ECALL. The enclave can transfer execution to untrusted code by performing an OCALL.
Most Go apps can be compiled and run with EGo without modifications. However, there are some limitations:
📄️ TLS inside the enclave
Accepting or establishing TLS connections inside the enclave has peculiarities you should be aware of.