- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
The IAS endpoint
/attestation/sgx/v1/sigrl/{gid}
throws a HTTP 404 Not Found for a simulation mode gid (returned by sgx_get_quote for an enclave running in simulation mode).
Q1: Should the development endpoint support simulation mode GIDs or is it expected to throw 404s?
Q2: The examples in [1] all throw a 404 (e.g. 3.1.1.2 with gid=00000010 which should be a 200). Should the example GIDs be valid?
Further info:
- development endpoint https://test-as.sgx.trustedservices.intel.com:443
- simulation mode GID retrieved by calling sgx_get_quote: 0B000000 (big endian hex encoded)
[1] Intel® Software Guard Extensions: Intel® Attestation Service API
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yes, simulation mode libraries are not considered valid for the development endpoint and also no plan on providing IAS development endpoint. you need valid SGX hardware to run the remote attestation. Server doesn’t need to have the SGX support.
Link Copied
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
IAS only supports valid GIDs.
404 Not Found is the expected error when the GID specified is not a valid EPID GroupID.
Please refer to the IAS API specification for additional details:
https://software.intel.com/sites/default/files/managed/3d/c8/IAS_1_0_API_spec_1_1_Final.pdf
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
So the GIDs returned by the SDK's simulation mode libraries are not considered valid for the development endpoint?
Are there plans on providing an IAS development endpoint that supports simulation mode GIDs? This seems like a common scenario, as CI servers are likely not have the same hardware (no SGX) as the target machines.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yes, simulation mode libraries are not considered valid for the development endpoint and also no plan on providing IAS development endpoint. you need valid SGX hardware to run the remote attestation. Server doesn’t need to have the SGX support.

- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page