Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

intel sgx认证机制 #452

Open
xglreal opened this issue Jan 12, 2021 · 1 comment
Open

intel sgx认证机制 #452

xglreal opened this issue Jan 12, 2021 · 1 comment

Comments

@xglreal
Copy link

xglreal commented Jan 12, 2021

请问一下,mesatee是怎么进行sgx的合法性验证的?

$ export AS_SPID="00000000000000000000000000000000" # SPID from IAS subscription
$ export AS_KEY="00000000000000000000000000000000" # Primary key/Secondary key from IAS subscription
$ export AS_ALGO="sgx_epid" # Attestation algorithm, sgx_epid for IAS
$ export AS_URL="https://api.trustedservices.intel.com:443" # IAS URL
这些参数是什么含义?

sgx合法性认证可以必须通过intel官网进行认证吗?

可以离线认证吗?

谢谢
@mssun
Copy link
Member

mssun commented Jan 12, 2021

  • SPID, KEY 是给 Intel Attestation Service [1] 使用的。
  • 除了用 Intel Attestation Service,也可以用 DCAP [2] 搭建 offline 的 attestation。

[1] https://api.portal.trustedservices.intel.com/EPID-attestation
[2] https://teaclave.apache.org/docs/codebase/dcap/

@henrysun007 henrysun007 mentioned this issue Jun 14, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mssun @xglreal