When Corda Notaries start processing transactions inside the Intel SGX enclave, it appears that even the owner/admin of the server hosting the Notary node has no control over the execution of the smart contract or read access to transaction data. Hence a single Notary owner could not act in a malicious manner to prevent the transaction being executed as it should be.
If this is true, then what are the benefits from having a cluster of Notaries, owned by multiple different entities, that reach consensus on the result of a transaction?
There are several reasons: