Reporting XXX Attack in Asylo Running with Intel SGX

[Jinhua Cui]

Dear Asylo Team,

Thanks for open souring the awesome project!

I am not sure if it is a right entry here for reporting vulnerabilities to Asylo Team. Previously, we have sent out a detailed report to one of your contributors, but it's regretful to get nothing back as of now.

We have confirmed that Asylo is affected by our attack by building a proof-of-concept exploit. As a part of our responsible disclosure efforts, we want to bring this to your attention. It would be great if you can point us to your official email for security problems.

Let us know if you need further information (including the PoC), and we would be happy to provide or clarify!

Regards,

Jinhua