README
¶
Attestation Document parsing and verification
Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var AWSNitroEnclavesRootCertFingerprint, _ = hex.DecodeString("641a0321a3e244efe456463195d606317ed7cdcc3c1756e09893f3c68f79bb5b")
https://docs.aws.amazon.com/enclaves/latest/user/verify-root.html
Functions ¶
This section is empty.
Types ¶
type NSMAttestationDoc ¶ added in v0.1.1
type NSMAttestationDoc struct {
ModuleID string
Timestamp time.Time
Digest string
PCRs map[int][]byte
Certificate *x509.Certificate
CABundle []*x509.Certificate
PublicKey []byte
UserData []byte
Nonce []byte
Signature []byte
// Raw holds the original attestation bytes with signature (COSE Sign1).
Raw []byte
// Payload holds CBOR encoded attestation doc.
Payload []byte
}
NSMAttestationDoc represents the structure of the attestation document.
Can be verified with 'Verify' method
func ParseNSMAttestationDoc ¶ added in v0.1.1
func ParseNSMAttestationDoc(raw []byte) (*NSMAttestationDoc, error)
ParseNSMAttestationDoc parses raw (Base64‑decoded) attestation bytes into a NSMAttestationDoc.
func (*NSMAttestationDoc) Verify ¶ added in v0.1.1
func (ad *NSMAttestationDoc) Verify() error
Signature and certificate chain verification
Source Files
Click to show internal directories.
Click to hide internal directories.