#nitro #enclave #attestation #aws #amazon

aws-nitro-enclaves-attestation

Attestation primitives library (for C/C++ bindings) for use in AWS Nitro Enclave applications

1 unstable release

0.1.0 Apr 14, 2021

#9 in #nitro


Used in aws-nitro-enclaves-attest…

Apache-2.0

21KB
316 lines

aws-nitro-enclaves-attestation

Attestation primitives and utilities Rust library (with C/C++ bindings) for use in AWS Nitro Enclave applications.

This library is usefull for developing C/C++ AWS Nitro Enclave applications with custom functionality like enclave-to-enclave secure communication and mutual attestation.

Unfortunately, AWS Nitro Enclaves SDK for this moment has a lot of gaps in functionality.

This library is trying to fill them.

How to use

After

cargo build --all

you can find C headers and nitroattest.so, nitroattest.a library files in your target build dir.

For inline C language test snippet just look inside the ./ffi/src/lib.rs

Status

Ready to use. Basic unit test coverage. Production NOT ready. Alpha. Still under development.

Third-party audition required.

Features

Feel free to open new issue with your proposals.

Dependencies

  • Attestation document parsing & COSE Signature validation:

aws-nitro-enclaves-cose

  • X.509 Certificate Validation:

webpki

Dependencies

~13–19MB
~480K SLoC