Skip to content

Nautilus Documentation

ntls-io/trusted-compute-MVP

Home
Installation
Installation
- SGX MVP Installation Guide
- Docker Deployment
API Documentation
API Documentation
- Overview
- Endpoints
  Endpoints
- Postman Guide
Attestation
Attestation
- Guide Guide
  Table of contents
  - Overview
  - Key Components
- Client Setup
Legal
Legal
- Privacy Policy
- Terms of Service

Remote Attestation Guide¶

This guide explains the Remote Attestation (RA) process in the Nautilus MVP using Intel SGX and Azure DCAP.

Overview¶

Remote Attestation allows a remote party to verify that:

The application is running in a genuine Intel SGX enclave
The code hasn't been tampered with
The platform can be trusted

Key Components¶

SGX Quote
- Contains enclave measurements (MRENCLAVE, MRSIGNER)
- Platform security version numbers
Azure DCAP
- Provides attestation collateral
- Verifies platform TCB status
- Manages quote generation
Measurements
- MRENCLAVE: Unique identity of code and data
- MRSIGNER: Identity of enclave signer
- ISV_PROD_ID: Product ID
- ISV_SVN: Security version number