aws-nitro-enclaves-attestation

Attestation primitives and utilities Rust library (with C/C++ bindings) for use in AWS Nitro Enclave applications.

This library is usefull for developing C/C++ AWS Nitro Enclave applications with custom functionality like enclave-to-enclave secure communication and mutual attestation.

Unfortunately, AWS Nitro Enclaves SDK for this moment has a lot of gaps in functionality.

This library is trying to fill them.

For now, implemented attestation document parsing and validation flow, according to official specification: https://github.com/aws/aws-nitro-enclaves-nsm-api/blob/main/docs/attestation_process.md

How to use

After

cargo build --all

you can find C headers and nitroattest.so, nitroattest.a library files in your target build dir.

For inline C language test snippet just look inside the ./ffi/src/lib.rs

Status

Ready to use. Basic unit test coverage. Production NOT ready. Alpha. Still under development.

Third-party audition required.

Features

Feel free to open new issue with your proposals.

Dependencies

Attestation document parsing & COSE Signature validation:

aws-nitro-enclaves-cose

X.509 Certificate Validation:

webpki

Name		Name	Last commit message	Last commit date
Latest commit History 30 Commits
ffi		ffi
src		src
tests/data		tests/data
.gitignore		.gitignore
Cargo.toml		Cargo.toml
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

aws-nitro-enclaves-attestation

How to use

Status

Features

Dependencies

About

Releases

Packages

Contributors 2

Languages

License

ppmag/aws-nitro-enclaves-attestation

Folders and files

Latest commit

History

Repository files navigation

aws-nitro-enclaves-attestation

How to use

Status

Features

Dependencies

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages