[Docs] Add notes on _sgx_mrsigner and _sgx_mrenclave encryption keys
#1725
Conversation
There was a problem hiding this comment.
Reviewed 1 of 1 files at r1, all commit messages.
Reviewable status: all files reviewed, all discussions resolved, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel)
There was a problem hiding this comment.
Reviewed 1 of 1 files at r1, all commit messages.
Reviewable status: all files reviewed, 1 unresolved discussion, not enough approvals from different teams (1 more required, approved so far: Intel) (waiting on @dimakuv)
Documentation/manifest-syntax.rst line 1011 at r1 (raw file):
same platform) to unseal files. This key is not accessible outside of the (same) enclave and thus cannot be used to decrypt files encrypted in this enclave.
This is weirdly written IMO, not sure if I'd understand this sentence without the context of this PR:
- It seems to say mostly the same information as the previous sentence. What's the additional information here which is missing?
- "This key [...] cannot be used to decrypt" - it can, if you extract it somehow. The key can be used, but it's just not accessible outside of the enclave.
- And it's actually not true, this key is used to decrypt the files, by the enclave itself.
There was a problem hiding this comment.
Reviewable status: 0 of 1 files reviewed, 1 unresolved discussion, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel), "fixup! " found in commit messages' one-liners (waiting on @kailun-qin and @mkow)
Documentation/manifest-syntax.rst line 1011 at r1 (raw file):
Previously, mkow (Michał Kowalczyk) wrote…
This is weirdly written IMO, not sure if I'd understand this sentence without the context of this PR:
- It seems to say mostly the same information as the previous sentence. What's the additional information here which is missing?
- "This key [...] cannot be used to decrypt" - it can, if you extract it somehow. The key can be used, but it's just not accessible outside of the enclave.
- And it's actually not true, this key is used to decrypt the files, by the enclave itself.
Done, I rephrased. The previous text contained only the "recommendation" (...useful to allow...). I wanted to add the text that has the "mandatory limitation" flavor to it.
Well, maybe I should be even more specific and change the verb cannot be used to something like can only be derived by the specific enclave on the specific platform, and thus stays secret to the enclave+platform (unless the enclave software explicitly makes this key public). I don't know, feels like too much text.
There was a problem hiding this comment.
Reviewed 1 of 1 files at r2, all commit messages.
Reviewable status: all files reviewed, 2 unresolved discussions, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel), "fixup! " found in commit messages' one-liners (waiting on @dimakuv)
Documentation/manifest-syntax.rst line 1009 at r2 (raw file):
* ``"_sgx_mrenclave"`` (SGX only) is the SGX sealing key based on the MRENCLAVE identity of the enclave. This is useful to allow only the same enclave (on the same platform) to unseal files, i.e., this key cannot be used by any other
Suggestion:
this key is not accessible to any otherDocumentation/manifest-syntax.rst line 1014 at r2 (raw file):
* ``"_sgx_mrsigner"`` (SGX only) is the SGX sealing key based on the MRSIGNER identity of the enclave. This is useful to allow all enclaves signed with the same key (and on the same platform) to unseal files, i.e., this key cannot be
ditto
There was a problem hiding this comment.
Reviewable status: 0 of 1 files reviewed, 2 unresolved discussions, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel), "fixup! " found in commit messages' one-liners (waiting on @mkow)
Documentation/manifest-syntax.rst line 1009 at r2 (raw file):
* ``"_sgx_mrenclave"`` (SGX only) is the SGX sealing key based on the MRENCLAVE identity of the enclave. This is useful to allow only the same enclave (on the same platform) to unseal files, i.e., this key cannot be used by any other
Done.
Documentation/manifest-syntax.rst line 1014 at r2 (raw file):
Previously, mkow (Michał Kowalczyk) wrote…
ditto
Done.
This commit is in response to customers' confusion on how to decrypt files encrypted with these keys. Signed-off-by: Dmitrii Kuvaiskii <dmitrii.kuvaiskii@intel.com>
There was a problem hiding this comment.
Reviewed 1 of 1 files at r3, all commit messages.
Reviewable status: all files reviewed, all discussions resolved, "fixup! " found in commit messages' one-liners
dimakuv
force-pushed
the
dimakuv/docs-sgx-keys-add-notes
branch
from
a8298c0
to
64cd864
Compare
There was a problem hiding this comment.
Reviewed 1 of 1 files at r4, all commit messages.
Reviewable status:complete! all files reviewed, all discussions resolved
There was a problem hiding this comment.
Reviewed 1 of 1 files at r4, all commit messages.
Reviewable status:
Description of the changes
This commit is in response to customers' confusion on how to decrypt files encrypted with these keys.
How to test this PR?
N/A.
This change is