Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Measure and attest SGX contents #84

Closed
npmccallum opened this issue Jan 3, 2020 · 2 comments
Closed

Measure and attest SGX contents #84

npmccallum opened this issue Jan 3, 2020 · 2 comments
Labels
attestation Issues related to attestation intel sgx Issues related to Intel SGX meta Larger project tasks and goals
Projects
Planning
Milestone
0.2.0

Comments

@npmccallum
Copy link
Member

Depends on #82.
@npmccallum npmccallum added the intel sgx Issues related to Intel SGX label Jan 3, 2020
@npmccallum npmccallum mentioned this issue Jan 3, 2020
Closed
@lkatalin
Copy link
Contributor

lkatalin commented Jul 8, 2020
edited
Loading

SGX attestation-related tasks (related to #824 ):

These are tasks that can be done without the communication channels between enclave and client established yet.

Enclave side (generating the attestation Report):

Enarx Client Agent side (verifying a Quote):

  • Create an attestation request (to be later sent to enclave side)
  • Retrieve a PCK cert chain from Intel’s service Retrieve Intel's PCK cert chain #789
  • Check validity of the PCK cert chain
  • Verify a dummy Quote:
    • Parse the Quote: get measurement, PCK leaf cert, signatures, etc.
    • Verify PCK is correct via PCK cert chain
    • Verify AK is correct via PCK
    • Verify AK signature on measurement is correct
    • Verify measurement is expected
  • Generate Diffie-Hellman keys **

** = Requires further discussion / RFC underway

Some of this code can be used as reference from 2019's attestation demo.

@mbestavros mbestavros added this to Triage in Planning Jul 14, 2020
@mbestavros mbestavros moved this from Triage to Backlog in Planning Jul 17, 2020
@lkatalin lkatalin added the meta Larger project tasks and goals label Oct 20, 2020
@lkatalin lkatalin moved this from Backlog to Nominated in Planning Dec 2, 2020
@mbestavros mbestavros moved this from Nominated to Accepted in Planning Dec 2, 2020
@mbestavros mbestavros moved this from Accepted to Assigned in Planning Dec 2, 2020
@enarxbot enarxbot added this to Assigned in Sprint Dec 2, 2020
This was referenced Dec 16, 2020
Merged
Merged
Merged
@enarxbot enarxbot moved this from Assigned to Nominated in Planning Jan 6, 2021
@enarxbot enarxbot removed this from Assigned in Sprint Jan 6, 2021
@platten platten added this to the 0.2.0 milestone Jan 11, 2022
@platten platten added the attestation Issues related to attestation label Jan 11, 2022
@platten platten assigned platten and unassigned platten Jan 11, 2022
@platten
Copy link
Contributor

platten commented Jan 12, 2022

Closing in lieu of #1212

@platten platten closed this as completed Jan 12, 2022
Planning automation moved this from Nominated to Done Jan 12, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
attestation Issues related to attestation intel sgx Issues related to Intel SGX meta Larger project tasks and goals
Projects
No open projects
Planning
  
Done
Milestone
0.2.0
Development

No branches or pull requests
3 participants
@npmccallum @platten @lkatalin