sbellem / sgx-iot

Intel SGX code sample: Gateway Key Provisioning and Secure Signing. From https://software.intel.com/content/www/us/en/develop/articles/code-sample-gateway-key-provisioning-and-secure-signing-using-intel-software-guard.html.
BSD 3-Clause "New" or "Revised" License
3 stars 1 forks source link

wip: generate quote with pubkey in report data #6

Closed sbellem closed 3 years ago

sbellem commented 3 years ago

The public key is written to file outside the enclave. Could this be a problem? What if the untrusted app changes that public key? Same reasoning goes for the report data as if the public key that is copied into the report data of a quote is tampered with then the public key is no longer useful to verify messages or outputs from the enclave.

Also: