Trusted Certificate Service (TCS) is a K8s service to protect signing keys using Intel's SGX technology. K8s CSR and cert-manager CR APIs are both supported. TCS also contains integration samples for Istio service mesh and Key Management Reference Application (KMRA).
Now QuoteAttestation holds a single 'Ready' condition for both 'key
provisioning' and 'quote validation' requests. The condition should be set
by the attestation controller with the appropriate status (true, false, or
unknown) and with an appropriate message in case of failure.
Now QuoteAttestation holds a single 'Ready' condition for both 'key provisioning' and 'quote validation' requests. The condition should be set by the attestation controller with the appropriate status (true, false, or unknown) and with an appropriate message in case of failure.