Skip to content
This repository has been archived by the owner on Jul 16, 2020. It is now read-only.

SGX: Establish secure session between enclave and tenant #25

Open
lkatalin opened this issue Sep 30, 2019 · 0 comments
Open

SGX: Establish secure session between enclave and tenant #25

lkatalin opened this issue Sep 30, 2019 · 0 comments
Assignees
@lkatalin

Comments

@lkatalin
Copy link
Contributor

After remote attestation is successful, the tenant must establish a secure communication channel with the enclave in order to provision secrets (i.e., the code to be run on Enarx). This is done through a DHKE. The public key for the enclave is:

  1. generated inside the enclave

  2. embedded in the Report Data portion of the enclave's Report, which is in turn embedded in the verified and signed Quote

Blocked by: mbedTLS modifications.
@lkatalin lkatalin self-assigned this Sep 30, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@lkatalin lkatalin

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@lkatalin