Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Define crypto abstraction interface for host and enclave runtime libs #68

Closed
4 tasks done
CodeMonkeyLeet opened this issue Jan 6, 2018 · 3 comments
Closed
4 tasks done

Define crypto abstraction interface for host and enclave runtime libs #68

CodeMonkeyLeet opened this issue Jan 6, 2018 · 3 comments
Labels
functionality Issue describes an enhancement or addition of functionality to Open Enclave SDK
Projects
Public preview
Milestone
2018.06

Comments

@CodeMonkeyLeet
Copy link
Contributor

CodeMonkeyLeet commented Jan 6, 2018
edited
Loading

On the host side, this will be necessary for allowing the host code to work across OS and the FIPS certified crypto implementations they ship with (BCrypt on Windows and OpenSSL in Ubuntu). Enclave hashing is already needed, and additional support will be needed for quote verification.

On the enclave side, this will be necessary for allowing a developer to plug in their choice of crypto lib instead of mbedTLS. This will need to support hashing, report/quote verification. In the future, this will also need to support seal/unseal.

  • SHA hashing methods for enclave hashing
  • AES-CMAC signature validation methods for report verification
  • ECDSA signature validation methods for quote verification
  • X509/ASN certificate chain methods for quote verification
@CodeMonkeyLeet CodeMonkeyLeet added the story Issue describes a user scenario to be enabled. Unit of prioritization for project planning. label Jan 6, 2018
@CodeMonkeyLeet CodeMonkeyLeet added this to the 2018.01 milestone Jan 6, 2018
@CodeMonkeyLeet CodeMonkeyLeet added this to Backlog in Public preview via automation Jan 6, 2018
This was referenced Jan 6, 2018
Closed
Closed
Closed
@CodeMonkeyLeet CodeMonkeyLeet moved this from Backlog to Current milestone in Public preview Jan 6, 2018
@CodeMonkeyLeet CodeMonkeyLeet moved this from Current milestone to In progress in Public preview Feb 3, 2018
@CodeMonkeyLeet CodeMonkeyLeet moved this from In progress to In review in Public preview Mar 16, 2018
@CodeMonkeyLeet
Copy link
Contributor Author

Partially addressed by #133

@CodeMonkeyLeet CodeMonkeyLeet moved this from In review to In progress in Public preview Apr 7, 2018
@CodeMonkeyLeet CodeMonkeyLeet modified the milestones: 2018.01, 2018.05 May 4, 2018
@CodeMonkeyLeet
Copy link
Contributor Author

AES-CMAC implemented as part of #211

@CodeMonkeyLeet CodeMonkeyLeet modified the milestones: 2018.05, 2018.06 Jun 2, 2018
@CodeMonkeyLeet CodeMonkeyLeet added functionality Issue describes an enhancement or addition of functionality to Open Enclave SDK and removed story Issue describes a user scenario to be enabled. Unit of prioritization for project planning. labels Jun 27, 2018
@CodeMonkeyLeet
Copy link
Contributor Author

Addressed by Mike's #222 and #289.

The remaining CRL and cert methods not originally listed in this issue are tracked in #356

Public preview automation moved this from In progress to Done Jun 27, 2018
@CodeMonkeyLeet CodeMonkeyLeet mentioned this issue Jun 29, 2018
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
functionality Issue describes an enhancement or addition of functionality to Open Enclave SDK
Projects
No open projects
Public preview
  
Done
Milestone
2018.06
Development

No branches or pull requests
2 participants
@mikbras @CodeMonkeyLeet