Date
Goals
To look in to how to use the datacenter attestation primitives
Discussion items
A presentation on DCAP attestation primitives for Intel SGX TEEs with Avalon (Proxy Model) by Mr. Dan Middleton from Intel, covering the following topics
- Basics of attestation
- Use the lab to demonstrate creating an attestation at one CSP
- and then verifying it in a (virtual) on-prem datacenter
The attestation flow enables more distributed communication patterns than what we have today.
The added flexibility also means there are a lot of possible paths to choose which can seem confusing.
In order to get started, here's a lab that chooses one concrete path.
https://github.com/hyperledger-labs/dancap
The video of the session is here:
1 Comment
Dan Anderson
Here's my notes on this presentation:
DCAP: Data Center Attestation Protocol for Intel SGX
Summary:
Links:
https://github.com/hyperledger-labs/dancap
SGX_QL_NETWORK_ERROR = SGX_QL_MK_ERROR(0x0019), // Network or proxy error
https://github.com/intel/SGXDataCenterAttestationPrimitives/blob/master/QuoteGeneration/quote_wrapper/common/inc/sgx_ql_lib_common.h
https://software.intel.com/en-us/articles/get-started-with-azure-confidential-computing
(Note the excellent comment at end of this article with Intel SGX tips by .... me )
Terms