ra-tls-verify

RA-TLS attestation verification for dstack TEE services.

Extract and verify TDX attestation quotes from RA-TLS X.509 certificates. Python equivalent of prisma-ra-tls's verification layer.

Install

pip install ra-tls-verify

Usage

Extract a TDX quote from an RA-TLS certificate

from ra_tls_verify import extract_tdx_quote

quote = extract_tdx_quote(der_cert_bytes)
if quote is None:
    print("Not an RA-TLS certificate")

Verify via Intel Trust Authority

import asyncio
from ra_tls_verify import IntelApiVerifier, VerifyOptions

verifier = IntelApiVerifier(api_key="your-ita-key")
result = asyncio.run(verifier.verify(quote))
print(f"MRTD: {result.mr_td}")
print(f"TCB:  {result.tcb_status}")

Development / simulator

from ra_tls_verify import NoopVerifier

verifier = NoopVerifier()  # accepts any quote

License

Apache-2.0

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
src/ra_tls_verify		src/ra_tls_verify
.gitignore		.gitignore
README.md		README.md
pyproject.toml		pyproject.toml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

ra-tls-verify

Install

Usage

Extract a TDX quote from an RA-TLS certificate

Verify via Intel Trust Authority

Development / simulator

License

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

ra-tls-verify

Install

Usage

Extract a TDX quote from an RA-TLS certificate

Verify via Intel Trust Authority

Development / simulator

License

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages