Skip to content

Attestation primitives and utilities library (with C/C++ bindings) for use in AWS Nitro Enclave applications

License

Notifications You must be signed in to change notification settings

edgebitio/aws-nitro-enclaves-attestation

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

aws-nitro-enclaves-attestation

Attestation primitives and utilities Rust library (with C/C++ bindings) for use in AWS Nitro Enclave applications.

This library is usefull for developing C/C++ AWS Nitro Enclave applications with custom functionality like enclave-to-enclave secure communication and mutual attestation.

Unfortunately, AWS Nitro Enclaves SDK for this moment has a lot of gaps in functionality.

This library is trying to fill them.

For now, implemented attestation document parsing and validation flow, according to official specification: https://github.com/aws/aws-nitro-enclaves-nsm-api/blob/main/docs/attestation_process.md

How to use

After

cargo build --all

you can find C headers and nitroattest.so, nitroattest.a library files in your target build dir.

For inline C language test snippet just look inside the ./ffi/src/lib.rs

Status

Ready to use. Basic unit test coverage. Production NOT ready. Alpha. Still under development.

Third-party audition required.

Features

Feel free to open new issue with your proposals.

Dependencies

  • Attestation document parsing & COSE Signature validation:

aws-nitro-enclaves-cose

  • X.509 Certificate Validation:

webpki

About

Attestation primitives and utilities library (with C/C++ bindings) for use in AWS Nitro Enclave applications

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Rust 100.0%