Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

Remote attestation between Enclaves

SA
Beginner
497 Views

 

Hi,

I would like to know if it is possible to establish a remote attestation between 2 enclaves each on a different platform? If this is possible, do we still need to communicate with IAS?

Thank you

0 Kudos
1 Reply
Hoang_N_Intel
Employee
497 Views

You cannot do remote attestation between two different enclaves on different machines. You can only do local attestation between enclaves on the same machine to get reports on the enclave attributes and measurements. However, currently you must use Intel Attestation Service (IAS) to verify the platform ID using Intel EPID which is not part of the local attestation.

 

0 Kudos
Reply