受信任的執行環境（TEE）通過將執行與主要操作系統隔離來增強區塊鏈系統的安全性

值得信賴的執行環境（TEE）是計算機硬件中的安全區域

A Trusted Execution Environment (TEE) is a secure area, actively protected against threats, within a computer’s hardware that isolates execution from the main OS, applications, and potentially malicious entities. It directs sensitive computations into an isolated, cryptographic electronic structure, protecting them from tampering or unauthorized access.

在計算機硬件中，可信賴的執行環境（TEE）是一個安全的區域，可積極保護威脅，該硬件將執行與主要操作系統，應用程序以及潛在的惡意實體隔離。它將敏感的計算引導到孤立的密碼電子結構中，以保護它們免受篡改或未經授權的訪問。

The two key features of TEEs are confidentiality and attestation. A TEE prevents external entities from viewing data inside it by leveraging encrypted memory, hardware-based isolation, and remote attestation. It operates as a segregated environment within a processor, where neither hypervisors nor malicious insiders can access its contents.

T恤的兩個關鍵特徵是機密性和證明。 TEE通過利用加密內存，基於硬件的隔離和遠程證明來防止外部實體查看其內部數據。它是處理器中的隔離環境的運行，在該環境中，管理程序和惡意內部人員都無法訪問其內容。

The hardware generates a hash (cryptographic measurement) of the environment state and code when a program is loaded into the TEE and signs it using a private key embedded in the hardware. A remote verifier receives the signed measurement and uses the manufacturer’s public key to compare it to known valid values. Upon successful verification, the remote party can trust that the TEE hasn’t been tampered with and is executing authentic code.

當將程序加載到TEE中並使用硬件中嵌入的專用密鑰簽名時，硬件會生成環境狀態和代碼的哈希（加密測量）。遠程驗證者接收簽名的測量值，並使用製造商的公鑰將其與已知有效值進行比較。成功驗證後，遠程方可以相信Tee尚未被篡改，並且正在執行真實的代碼。

Some TEEs use so-called Roots of Trust, which allow the connected service within which they’re attempting to enroll to verify the legitimacy of a device.

一些TEE使用所謂的信任根，允許他們試圖註冊的連接服務驗證設備的合法性。

How TEEs work

T恤的工作方式

To support a TEE, a device must define a security perimeter (Trusted Area) separated from the main OS and applications by hardware, in which only trusted code is executed. All code executed within a TEE is properly authorized, with each stage of execution verified by previously authorized code, starting from the ROM (Read-Only Memory) boot process.

為了支持TEE，設備必須定義與主要操作系統和應用程序分開的安全外圍（可信區域），該硬件僅執行可信賴的代碼。在TEE中執行的所有代碼均已適當授權，並從先前授權的代碼驗證執行階段，從ROM（僅讀取內存）啟動過程開始。

Code and data inside a TEE cannot be modified or accessed externally because ROM code is set during the design stage and cannot be changed thereafter. TEEs can use multi-signature (multisig) models to enhance security in asset custody and transactions, as these models ensure redundancy and prevent single points of failure. Traditionally, the simplest multisig arrangement that addresses both loss and theft of private keys is 2-of-3, which is also the most common quorum for safekeeping Bitcoin in cold storage. Another popular arrangement is 3-of-5, but it introduces more complexity than needed in most cases.

由於在設計階段設置了ROM代碼，因此無法修改TEE中的代碼和數據，因此無法更改。 TEE可以使用多簽名（Multisig）模型來增強資產監管和交易的安全性，因為這些模型確保了冗餘並防止單個失敗點。傳統上，解決私鑰的損失和盜竊的最簡單的Multisig安排是3中的2，這也是冷藏中保存比特幣的最常見法定人數。另一個流行的安排是5的3中，但在大多數情況下，它引入的複雜性比所需的複雜性還要多。

Real-world applications and risk mitigation

現實世界中的應用和降低風險

TEEs securely store private keys for cross-chain execution and allow decentralized apps to manage assets across multiple chains. In healthcare, blockchains can leverage TEEs to process sensitive patient data safely and compliantly. Handling electronic health records on-chain is an example.

TEES安全地存儲私鑰以進行跨鏈執行，並允許分散的應用程序管理多個鏈條的資產。在醫療保健中，區塊鏈可以利用TEES安全，合適地處理敏感的患者數據。鏈上處理電子健康記錄就是一個例子。

TEEs can also replace cross-chain bridges, which are inextricably linked to risks of hacking and smart contract vulnerabilities.

TEE還可以替換跨鏈橋，這些橋樑與黑客和智能合同脆弱性的風險密不可分。

Risks of cross-chain bridges also include high fees and transaction delays, especially during high demand, and reliance on third-party validators, which can be points of failure. Bridges are exposed to a higher risk of attacks because their functionality relies on data collaboration both on- and off-chain. Attacks on cross-chain bridges have incurred losses of almost $4.3 billion between June 2021 and September 2024.

跨鏈橋樑的風險還包括高費用和交易延遲，尤其是在高需求期間，以及依賴第三方驗證者，這可能是失敗點。橋樑的攻擊風險更高，因為它們的功能依賴於鍊和鏈的數據協作。在2021年6月至2024年9月之間，對跨鏈橋的襲擊造成了近43億美元的損失。

Decentralization, trustlessness, and full-chain abstraction

權力下放，無信任和全鏈抽象

Flare, a full-stack L1 solution for data-intensive use cases, provides a secure and efficient approach to cross-chain transaction execution via TEE integration. Its Protocol Managed Wallets (PMWs) allow protocols to execute transactions directly across blockchains while preserving trustlessness, decentralization, and freedom from censorship. Flare ensures security because the PMWs are not based on a single TEE. If they were, there would be two significant risks: a lack of redundancy and unknown exploits the manufacturer has embedded within the TEE.

Flare是一種用於數據密集型用例的全堆棧L1解決方案，為通過TEE集成提供了一種安全有效的方法來進行跨鏈交易執行。其協議管理的錢包（PMW）允許協議可以直接跨區塊鏈執行交易，同時保持無信任，權力下放和免於審查。耀斑確保安全性，因為PMW不是基於單個T卹。如果是的話，將會有兩個重大風險：缺乏冗餘和未知的利用，製造商嵌入了T卹中。

The lack of redundancy would become problematic if the TEE were to become non-operational due to a power outage. Alternatively, an exploit of the TEE might compromise a private key, leading to a loss of funds. Flare’s PMW system mitigates both risks because multiple TEEs are involved in its multisig scheme, under which a transaction on an address the PMW controls is only possible with the agreement of a quorum of distinct, globally distributed execution environments.

如果由於停電而成為非手術，則缺乏冗餘將成為問題。另外，TEE的利用可能會損害私鑰，從而導致資金損失。 Flare的PMW系統會降低這兩種風險，因為其Multisig方案中有多個TEE涉及，在該方案下，在地址上的交易PMW控件只有在Quorum達成不同的不同，全球分佈式執行環境的方面才有可能。

The addition of PMWs does away with the need to interact with other blockchains when building applications. Users interact with one protocol on Flare, and that protocol executes across linked chains, manifesting a leap into full-chain abstraction.

PMW的添加消除了在構建應用程序時與其他區塊鏈互動的需求。用戶與Flare上的一個協議進行交互，該協議跨鏈接鏈執行，表現為全鏈抽象。

TEEs also augment DeFi security by isolating liquidation calculations, lending, staking, transaction matching, and other sensitive computations. Privacy-preserving DEXs can leverage them to protect user details. One of Flare’s many additional use cases is FAssets V2, which makes it possible to leverage XRP, BTC, and DOGE in DeFi on the platform, secured by Flare’s consensus.

TEE還通過隔離清算計算，貸款，積分，交易匹配和其他敏感計算來增強DEFI安全性。隱私保護DEX可以利用它們來保護用戶詳細信息。 Flare的許多其他用例之一是Fassets V2，這使得可以在平台上的Defi中利用XRP，BTC和Doge，並由Flare的共識確保。

TEEs’ ability to process and validate multichain data securely without exposing transaction details or private keys allows lending and staking protocols to trust that account states, liquidity data and cross-chain price feeds are accurate. In addition, they enable lending protocols to accept collateral from one blockchain and provide yield rewards or loans on another.

TEE的能力可以安全地處理和驗證多鍵數據，而無需公開交易詳細信息或私鑰，允許貸款和放入協議可以信任帳戶狀態，流動性數據和跨鏈價格提要是準確的。此外，它們使貸款方案能夠接受一個區塊鏈的抵押品，並在另一個區塊鏈上提供收益獎勵或貸款。

The attestation-based trust model verifies the identity of the application running inside

基於證明的信任模型驗證了在內部運行的應用程序的身份