DelegaTEE: Brokered Delegation Using Trusted Execution Environments

Background • Brokered Delegation -allows user's to flexibly share and delegate access, without requiring explicit support from service providers • New type of delegation restricted under policy enforcements by a TEE enclave • Trusted Execution Environments (TEEs) -a secure area inside a main processor • Emergence of TEEs, such as Intel SGX, enables an alternative way to achieve delegation without trust between the Owner and Delegatee