As shown above, the
oracle private key is information that should not be revealed to anyone, including the oracle operator, because it is the key to ensuring data privacy and making
DEP work. In the
SGX environment, oracle can store the oracle private key in a completely private way using a feature called
sealing. Sealed data can only be decrypted within the
enclave, and even the oracle operator cannot obtain the decrypted data. Therefore, oracle stores the
oracle private key in sealed form and only uses it within the
enclave to prevent the risk of leakage.