Intel SGX and thus AWS Nitro enclaves are having vulnerability. https://aepicleak.com https://aepicleak.com/aepicleak.pdf https://github.com/IAIK/AEPIC AES-NI and RSA keys easily leaked through APIC registrers and MMIO memory, i.e. through data transferring between L2 and L3 cache. This is Intel's architectural vulnerability, affecting 10, 11, 12 generation. Microcode update (with registers and MMIO pages cleaning after every operation with enclave) is already on its way. Also it's recommended to use MSR registers (x2APIC mode) instead of MMIO (xAPIC mode) to use and access APIC registers. www.intel.com/content…657.html www.intel.com/content…pic.html