> For the complete documentation index, see [llms.txt](https://docs.ternoa.network/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.ternoa.network/specs/trusted-execution-environments.md). # Trusted Execution Environments  ### **What is a Trusted Execution Environment (TEE)?** A **Trusted Execution Environment (TEE)** is a secure enclave within a processor that enables confidential computing by isolating sensitive computations from the rest of the system. It ensures that even if the operating system, hypervisor, or other software is compromised, the data and code inside the TEE remain protected. ### **Why Ternoa Uses Intel SGX?** Ternoa integrates **Intel SGX (Software Guard Extensions)** to enhance **confidentiality, integrity, and security** for its Layer 2 network. This enables: 🟧 **End-to-End Data Protection** – Sensitive computations run in isolated enclaves, shielded from external threats.\ 🟧 **Verifiable Integrity** – Code inside SGX enclaves can be remotely attested, proving it hasn’t been tampered with.\ 🟧 **Decentralized Security for Layer 2** – Protects critical operations such as transaction validation and key management.\ 🟧 **Defense Against Insider Attacks** – Even privileged system administrators cannot access the encrypted enclave data. ### **How Intel SGX Powers Ternoa’s Infrastructure** By leveraging **Intel SGX**, Ternoa ensures: ✔️ **Tamper-Proof Execution** – Even compromised servers cannot alter or leak enclave-protected data.\ ✔️ **Secure Key Management** – Cryptographic operations and key storage are protected inside the enclave.\ ✔️ **Privacy-Preserving Computation** – Enables zk-proof generation and verification without data exposure.\ ✔️ **Remote Attestation** – Verifiable proofs that Ternoa’s integrity-sensitive components remain unaltered. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.ternoa.network/specs/trusted-execution-environments.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.