On Sun, Oct 18, 2020 at 03:49:20AM -0500, Dr. Greg wrote: > Is this even a relevant control if we cede the notion of dynamically > loadable enclave code, which is the objective of SGX2 hardware, which > will in all likelihood be the only relevant hardware implementation in > the future?
Yes, it's still relevant. Giving the thumbs up to dynamically loadable code is not a purely binary decision, e.g. a user/admin can allow RW->RX transitions but still disallow full RWX permissions.
