Giters

zeroFruit / verify-enclave

A command line tool that remotely attests an AWS Nitro enclave.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

attest-enclave

This tool attests a remotely running AWS Nitro enclave, i.e., it ensures that the remotely running code is identical to a given local code repository.

Installation

The code currently depends on a patched version of the nitrite library. The file go.mod contains a directive that tells the compiler to use a local copy of nitrite rather than the official one:

replace github.com/hf/nitrite => ../nitrite

The patched version of nitrite is available here.

Usage

To attest the enclave, run the following:

make verify CODE=/path/to/ia2/ ENCLAVE=https://example.com/attest

For attestation to succeed, your version of both Go and ko must be identical to the versions that have been used to compile the remotely running enclave.

About

A command line tool that remotely attests an AWS Nitro enclave.

License:Mozilla Public License 2.0

Languages

Language:Go 59.7%Language:Shell 34.6%Language:Makefile 5.6%