From 86f627864a93d75ae58634f092d8488ecf9d35aa Mon Sep 17 00:00:00 2001 From: Sukuna0007Abhi Date: Thu, 25 Sep 2025 22:46:07 +0000 Subject: [PATCH 1/4] Update repo guide with new repositories added in last 6 months - Added book repository for compiled documentation - Added new Rust implementations: rust-ccatoken, rust-cmw, corim-rs - Added new CLI tools: gen-testcase, cover - Added new libraries: cca-realm-measurements, python-ear - Added new services: ratsd (RATS daemon) - Added new demo: keybroker-demo - Updated mermaid diagrams to reflect new repositories - Reorganized demos into separate section Fixes #65 Signed-off-by: Sukuna0007Abhi --- repo-guide.md | 45 +++++++++++++++++++++++++++++++++++++++++---- 1 file changed, 41 insertions(+), 4 deletions(-) diff --git a/repo-guide.md b/repo-guide.md index 94a43fe..92381e6 100644 --- a/repo-guide.md +++ b/repo-guide.md @@ -12,6 +12,9 @@ This is the main repo holding the code implementing the attestation verification [docs](https://github.com/veraison/docs) Veraison documentation +[book](https://github.com/veraison/book) +Compilation of documentation for various Veraison projects into a reader-friendly format + ## Project [community](https://github.com/veraison/community) Veraison community files. Look here for introductory presentations to the project and CCC membership materials. @@ -35,12 +38,22 @@ This collection of libraries provides manipulation and verification functionalit [ccatoken](https://github.com/veraison/ccatoken) A library for the Arm Confidential Computing Architecture (CCA) Attestation Token. +[rust-ccatoken](https://github.com/veraison/rust-ccatoken) +Rust implementation of the Arm Confidential Computing Architecture (CCA) Attestation Token library. + +[cca-realm-measurements](https://github.com/veraison/cca-realm-measurements) +Library for handling CCA Realm measurements and attestation data. + [dice](https://github.com/veraison/dice): library providing support functions for manipulating various profiles of DICE. [parsec](https://github.com/veraison/parsec): Library support for handling the Parsec Key Attestation formats used in the attested TLS PoC. +## Demos and Integration Examples + [enact-demo](https://github.com/veraison/enact-demo): EnactTrust TPM/Veraison interop demo and related docs +[keybroker-demo](https://github.com/veraison/keybroker-demo): A simple key broker protocol demonstration + ## CLI tools CLI tools for illustrative interactions with attestation tokens or a Veraison service. Used for demos & integration testing. @@ -54,6 +67,12 @@ CLI for Veraison services policy management client [gen-corim](https://github.com/veraison/gen-corim) CLI for generating CoRIM (containing Endorsements and Reference Values) using Evidence +[gen-testcase](https://github.com/veraison/gen-testcase) +Test case generator for CoRIM-related testing and validation + +[cover](https://github.com/veraison/cover) +CoRIM Verifier - tool for verifying CoRIM files + ## Standards driven work The Veraison Project supports Attestation related working groups in standards bodies, in particular IETF & TCG. This set of repos provide test bed implementations for some of the standards work, as related to Veraison services. @@ -66,15 +85,22 @@ These libraries provide functions for working with EAR (EAT Attestation Results) [ear](https://github.com/veraison/ear): Golang implementation of EAT Attestation Results [rust-ear](https://github.com/veraison/rust-ear): Rust implementation of EAT Attestation Results -[c-ear](https://github.com/veraison/ear): C implementation of EAT Attestation Results +[c-ear](https://github.com/veraison/c-ear): C implementation of EAT Attestation Results +[python-ear](https://github.com/veraison/python-ear): Python implementation of EAT Attestation Results [cmw](https://github.com/veraison/cmw): implementation for RATS WG Conceptual Message Wrappers (draft-ftbs-rats-msg-wrap) for attestation related data encapsulation. +[rust-cmw](https://github.com/veraison/rust-cmw): Rust implementation of RATS WG Conceptual Message Wrappers + +[ratsd](https://github.com/veraison/ratsd): A RATS conceptual message collection daemon + #### Verifier Provisioning These libraries provide support for the standard information models used to convey data to a Verifier. [corim](https://github.com/veraison/corim): manipulation of Concise Reference Integrity Manifest (CoRIM) and Concise Module Identifier (CoMID) tags. Also includes cocli CLI tool, that assists users creating CoRIM & CoMID tags. +[corim-rs](https://github.com/veraison/corim-rs): Rust implementation of CoRIM and CoMID manipulation library + [swid](https://github.com/veraison/swid) : SWID and CoSWID manipulation library #### COSE @@ -115,10 +141,15 @@ COCLI["Endorsement Manipulation CLI Tool GEN-CORIM["Endorsement creation from Evidence CLI Tool gen-corim"] +COVER["CoRIM Verifier + cover"] + VPF["Verifier Provisioning Formats corim + corim-rs coswid"] COCLI ---> VPF +COVER ---> VPF CL["Common Libraries go-cose"] @@ -130,13 +161,17 @@ EF["Evidence Formats eat psatoken ccatoken + rust-ccatoken + cca-realm-measurements enacttrust-tpm parsec (tpm, cca)"] EF ---> CL SD["Core Verifier repositories services - docs"] + docs + book + ratsd"] RP("Relying Party \n \n") @@ -145,7 +180,8 @@ style RP fill:#f9f,stroke:#333,stroke-width:4px AR["Attestation Results ear c-ear - rust-ear"] + rust-ear + python-ear"] RP ---> AR subgraph Verifier["Verifier"] @@ -173,7 +209,8 @@ EVCLI["Evidence Manipulation CLI Tool \n evcli "] EVCLI ---> API CMW["CONCEPTUAL MESSAGE WRAPPER - cmw"] + cmw + rust-cmw"] ATT --->EF ATT -.-> EVCLI From 61b329b726e0113fdfb930c329ecb6d9739b2e0d Mon Sep 17 00:00:00 2001 From: Sukuna0007Abhi Date: Mon, 29 Sep 2025 13:51:50 +0000 Subject: [PATCH 2/4] fix: remove extra newlines from Mermaid role boxes - Cleaned up Supply Chain, Attester, and Relying Party role boxes - Addresses feedback from @yogeshbdeshpande about extra \n in rendered Mermaid diagrams Signed-off-by: Sukuna0007Abhi --- repo-guide.md | 9 +++------ 1 file changed, 3 insertions(+), 6 deletions(-) diff --git a/repo-guide.md b/repo-guide.md index 92381e6..50ff272 100644 --- a/repo-guide.md +++ b/repo-guide.md @@ -127,12 +127,10 @@ flowchart TD subgraph Veraison["Core Structure Endorsement Manipulation CLI Tool @@ -173,8 +171,7 @@ SD["Core Verifier repositories book ratsd"] -RP("Relying Party \n - \n") +RP("Relying Party") style RP fill:#f9f,stroke:#333,stroke-width:4px AR["Attestation Results From 3da9318ffc9f4e7c70fc7fe6a8803d0c33f8bc2f Mon Sep 17 00:00:00 2001 From: Sukuna0007Abhi Date: Mon, 29 Sep 2025 14:51:51 +0000 Subject: [PATCH 3/4] fix: remove extra newlines from Verifier Owner box in mermaid diagram - Clean up formatting in Verifier Owner role box - Addresses reviewer feedback about extra \n in role boxes Signed-off-by: Sukuna0007Abhi --- repo-guide.md | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/repo-guide.md b/repo-guide.md index 50ff272..a72ce37 100644 --- a/repo-guide.md +++ b/repo-guide.md @@ -217,8 +217,7 @@ Verifier ---> CMW POCLI["Policy Mgmt CLI Tool pocli"] -VO("Verifier Owner \n - \n") +VO("Verifier Owner") style VO fill:#f9f,stroke:#333,stroke-width:4px VO --> POCLI From 159eb51925558c7f4666875e99b72be0b1b0a52b Mon Sep 17 00:00:00 2001 From: Sukuna0007Abhi Date: Mon, 29 Sep 2025 14:58:51 +0000 Subject: [PATCH 4/4] fix: address reviewer feedback - Remove cover repo (work in progress) - Update cca-realm-measurements description and location - Clean up mermaid diagram formatting Signed-off-by: Sukuna0007Abhi --- repo-guide.md | 12 ++---------- 1 file changed, 2 insertions(+), 10 deletions(-) diff --git a/repo-guide.md b/repo-guide.md index a72ce37..68414c1 100644 --- a/repo-guide.md +++ b/repo-guide.md @@ -41,9 +41,6 @@ A library for the Arm Confidential Computing Architecture (CCA) Attestation Toke [rust-ccatoken](https://github.com/veraison/rust-ccatoken) Rust implementation of the Arm Confidential Computing Architecture (CCA) Attestation Token library. -[cca-realm-measurements](https://github.com/veraison/cca-realm-measurements) -Library for handling CCA Realm measurements and attestation data. - [dice](https://github.com/veraison/dice): library providing support functions for manipulating various profiles of DICE. [parsec](https://github.com/veraison/parsec): Library support for handling the Parsec Key Attestation formats used in the attested TLS PoC. @@ -70,8 +67,8 @@ CLI for generating CoRIM (containing Endorsements and Reference Values) using Ev [gen-testcase](https://github.com/veraison/gen-testcase) Test case generator for CoRIM-related testing and validation -[cover](https://github.com/veraison/cover) -CoRIM Verifier - tool for verifying CoRIM files +[cca-realm-measurements](https://github.com/veraison/cca-realm-measurements) +A tool to calculate Realm Initial Measurements and Realm Extended Measurements for Arm CCA ## Standards driven work The Veraison Project supports Attestation related working groups in standards bodies, in particular IETF & TCG. This set of repos provide test bed implementations for some of the standards work, as related to Veraison services. @@ -139,15 +136,11 @@ COCLI["Endorsement Manipulation CLI Tool GEN-CORIM["Endorsement creation from Evidence CLI Tool gen-corim"] -COVER["CoRIM Verifier - cover"] - VPF["Verifier Provisioning Formats corim corim-rs coswid"] COCLI ---> VPF -COVER ---> VPF CL["Common Libraries go-cose"] @@ -160,7 +153,6 @@ EF["Evidence Formats psatoken ccatoken rust-ccatoken - cca-realm-measurements enacttrust-tpm parsec (tpm, cca)"] EF ---> CL