Support verifying DCAP evidence #65
Conversation
Add an MCIP which describes how the DCAP verification logic should live side by side with the EPID logic for the clients.
nick-mobilecoin
force-pushed
the
dcap-attestation-evidence
branch
from
68e47d2
to
539298b
Compare
|
One thing that's not clear to me is, how do I get the "report data" after this change? This is needed when clients get the fog report: https://github.com/mobilecoinfoundation/mobilecoin/blob/master/fog/report/resolver/src/lib.rs Does that part all work the same, it's just the validate functions that are changing? |
|
What is the |
It's probably me using the wrong terminology
|
|
I'd suggest, maybe this arrow should be |
|
The way that stuff is defined is through The trait is here: And it gets pulled in when forming reports here: But I'm not sure we need to get into it in this MCIP, except to say that the enclave decides what values its report data has. DCAP doesn't care about what bytes are in the report data. |
|
The report data is 64 bytes, and usually the first 32 bytes is the noise X25519 identity for attested connections with clients and peers, and the second key is like the ed25519 block signing key in consensus, and its the ristretto ingress key in fog ingest |
Per 0000-template the MCIP should be worded as if it was already implemented and it's explaining to a new user.
Add an MCIP which describes how the DCAP verification logic should live
side by side with the EPID logic for the clients.
Rendered MCIP