Trusted Certificate Service (TCS) is a K8s service to protect signing keys using Intel's SGX technology. K8s CSR and cert-manager CR APIs are both supported. TCS also contains integration samples for Istio service mesh and Key Management Reference Application (KMRA).
Apache License 2.0
29
stars
15
forks
source link
API/QuoteAttestation: Field to hold 'Nonce' used for quote generation #64
Made a change to QuoteAttestation API to hold the 'nonce' used for quote generation. This value is supposed to use by the TAC/key manager while validating the provided SGX quote hash.
v1alpha2