PanLiyuan
commented
1 year ago @Timo-1 thanks for the input!
Could you review? https://github.ibm.com/cloud-docs/vpc/pull/2052/files
Closed Timo-1 closed 1 year ago
PanLiyuan
commented
1 year ago @Timo-1 thanks for the input!
Could you review? https://github.ibm.com/cloud-docs/vpc/pull/2052/files
PanLiyuan
commented
1 year ago @Timo-1 Should it be se-signature.bin instead of signature.bin in the command?
Timo-1
commented
1 year ago @PanLiyuan yes, you are right: se-signature.bin is correct
PanLiyuan
commented
1 year ago @gudrun-wolfgram please help to merge the PRs: https://github.ibm.com/cloud-docs/vpc/pull/2052 (to draft) https://github.ibm.com/cloud-docs/vpc/pull/2053 (to publish) thanks!
PanLiyuan
commented
1 year ago
Page: https://cloud.ibm.com/docs/vpc?topic=vpc-about-attestation Edit this sentence: Old: Check the attestation record se-checksums.txt and the signature file se-signature.bin under the /var/hyperprotect directory after after you log in to your Hyper Protect Virtual Servers for VPC instance. New: Obtain the attestation record se-checksums.txt and the signature file se-signature.bin from your Hyper Protect Virtual Servers for VPC instance. To do so, you can implement your container to provide the attestation record and the signature file. The attestation record and the signature file are made available to your container in the /var/hyperprotect directory.
Add this sentence New Verify the signature of the attestation record:
openssl sha256 -verify contract-public-key.pub -signature signature.bin se-checksums.txtabove / before the following sentence: You can now use the hashes from the attestation record for validation.