Intel® Software Guard Extensions (Intel® SGX)
Discussion board focused on hardware-based isolation and memory encryption to provide extended code protection in solutions.

Where I can find SPID?

Seonghyun__Kim
Beginner
2,049 Views

Hi,

My goal is to try to have better understanding of Intel Attestation Services with its official document (https://software.intel.com/sites/default/files/managed/57/0e/ww10-2016-sgx-provisioning-and-attestation-final.pdf). According to the document I will need to have SPID.

I created Intel Developer account today, and created my first DEV Intel® Software Guard Extensions Attestation Service (Linkable) profile with (https://api.portal.trustedservices.intel.com/EPID-attestation). It seems, however, impossible for me to find where I can find and where I can create SPID if there is.

I am aware that it may be way too simple question so I did put lots of time to search on this website, stack-overflow, and google but it did not work out well, so let me ask this question in this forum.

Thank you in advance. 

0 Kudos
1 Solution
Scott_R_Intel
Employee
2,049 Views

Hello Kim.

The SPID (and its associate key) are what you use to authenticate to Intel Attestation Services (IAS) when doing EPID based SGX remote attestation.  To get a SPID/Key, you need to have/create an Intel Developer Zone (IDZ) account and then click one of the "Subscribe" buttons on that link Junli provided.  Be aware, that article is a bit out of date, as we no longer use TLS certs for authentication.  For a full, updated tutorial on EPID based RA, including a link to our SGX remote attestation sample out on GitHub, see the link below:

https://software.intel.com/en-us/articles/code-sample-intel-software-guard-extensions-remote-attestation-end-to-end-example

Regards.

Scott

View solution in original post

0 Kudos
4 Replies
Junli_S_Intel
Employee
2,049 Views

please refer to linker: https://api.portal.trustedservices.intel.com/EPID-attestation

0 Kudos
Seonghyun__Kim
Beginner
2,049 Views

Hi JUNLI S.

JUNLI S. (Intel) wrote:

please refer to linker: https://api.portal.trustedservices.intel.com/EPID-attestation

Thank you for the response, however, I cannot see any term "SPID" in the link that you attached. The page is about EPID.

Or maybe you imply that EPID and SPID are the same?

If not, unfortunately the answer is not answering the question.
If so, I would like to ask where I can see actual EPID that I can generate because I also played with EPID but there is no such ID, although SPID is supposed to be hash key according to the manual in my question.

0 Kudos
Scott_R_Intel
Employee
2,050 Views

Hello Kim.

The SPID (and its associate key) are what you use to authenticate to Intel Attestation Services (IAS) when doing EPID based SGX remote attestation.  To get a SPID/Key, you need to have/create an Intel Developer Zone (IDZ) account and then click one of the "Subscribe" buttons on that link Junli provided.  Be aware, that article is a bit out of date, as we no longer use TLS certs for authentication.  For a full, updated tutorial on EPID based RA, including a link to our SGX remote attestation sample out on GitHub, see the link below:

https://software.intel.com/en-us/articles/code-sample-intel-software-guard-extensions-remote-attestation-end-to-end-example

Regards.

Scott

0 Kudos
Seonghyun__Kim
Beginner
2,049 Views

Scott R. (Intel) wrote:

Hello Kim.

The SPID (and its associate key) are what you use to authenticate to Intel Attestation Services (IAS) when doing EPID based SGX remote attestation.  To get a SPID/Key, you need to have/create an Intel Developer Zone (IDZ) account and then click one of the "Subscribe" buttons on that link Junli provided.  Be aware, that article is a bit out of date, as we no longer use TLS certs for authentication.  For a full, updated tutorial on EPID based RA, including a link to our SGX remote attestation sample out on GitHub, see the link below:

https://software.intel.com/en-us/articles/code-sample-intel-software-gua...

Regards.

Scott

I just checked the up-to-dated manual that you mentioned and the SPID is only appeared with unlinkable subscription. I also managed to create Unlinkable Subscription and am able to see SPID. Thank you very much for the detailed and helpful answer :)

0 Kudos
Reply