Closed thomas-fossati closed 9 months ago
@thomas-fossati , @muhammad-usama-sardar - for posterity, the question I asked during the 1/30 CCC Attestation SIG was regarding slide 9:
- What does "post-handshake" do to the programming model? It seems that it moves the problem of establishing an attested encrypted channel to the application layer, thereby requiring modification to all apps. If accurate, this seems to make the "post-handshake" alternative significantly less attractive than the others (where this transparently handled by the TLS library).
Thanks! I've copied it to the minutes.
- What does "post-handshake" do to the programming model?
Thank you @gkostal for this question. Now that we are done with formalizing pre-handshake attestation and started exploring post-handshake attestation, I have some initial thoughts to your question.
It seems that it moves the problem of establishing an attested encrypted channel to the application layer,
Yes, that is also my understanding.
thereby requiring modification to all apps.
not necessarily. For example, SCONE has "SCONE Runtime" in the same enclave as the application. SCONE Runtime handles all the attestation part, so that there are no/minimal changes to the application. There are, however, at least two cons of this approach:
@thomas-fossati , @muhammad-usama-sardar - for posterity, the question I asked during the 1/30 CCC Attestation SIG was regarding slide 9: