• Version
• Download 9
• File Size 402.69 KB
• Download

SafePass: A Rust-based Password Management Wallet Solution using Intel SGX

Abhijeet Sonar
Mumbai, IN abhijeetsonar.us@gmail.com CTO

Omkar Wagle
San Jose, CA ov.wagle@gmail.com Software Engineer

Aishwarya Lonarkar
Dallas, TX aishwaryalonarkar@gmail.com Full Stack Engineer

Abstract—SafePass is a password manager wallet that leverages Intel Software Guard Extensions (SGX) technol- ogy and the Rust programming language to provide secure storage and management of user passwords. The applica- tion features a secure enclave implemented in Rust, which uses a hashmap-based data storage system to support var- ious password management operations such as username- password addition, updating existing passwords, removing particular username and password entries, clearing the entire wallet, recommending password and finding pass- word by username. The enclave employs SGX’s hardware- based memory encryption and access control features to ensure that sensitive data is protected against unauthorised access and tampering. In addition to the aforementioned security mechanisms, the password manager application also incorporates two-factor authentication (2FA) within the secure enclave implemented in Rust. This design choice enhances the application’s overall security posture by em- bedding 2FA within the enclave itself, effectively isolating the authentication mechanism from potential attackers and mitigating risks associated with credential theft or abuse. Overall, this password manager application showcases the capabilities of SGX and Rust in delivering secure and reliable password management solutions. By incorporat- ing 2FA and hardware-based security mechanisms, the application effectively protects sensitive data from security threats such as side-channel attacks, memory tampering, and code injection, making it an invaluable contribution to the field of secure computing.

Index Terms—Intel SGX, Rust, Enclave, Password Man- ager, 2FA, Encryption, Secure Data, Memory Leak