Article ID: 000087699 Content Type: Product Information & Documentation Last Reviewed: 09/25/2021

Is There a Mechanism to Provision Secrets to an Enclave after Quote has been Verified using Intel® Software Guard Extensions (Intel® SGX) Datacenter Attestation Primitives (DCAP)?

BUILT IN - ARTICLE INTRO SECOND COMPONENT

Summary

Intel does not recommend a particular method to provision secrets using DCAP, but it can be accomplished using Transport Layer Security (TLS).

Description

Unable to determine how to provision secrets from the service provider to the enclave after the quote has been verified.

Resolution

For Intel SGX DCAP*, Intel provides the QuoteGeneration* and QuoteVerification* components and leaves it up to the solution developer to choose their own mechanism for exchanging secrets. Most developers use Transport Layer Security (TLS) terminating inside the enclave, but there are other ways it could be done.

Summary
Description
Resolution

Need more help?

Contact support

Disclaimer

All postings and use of the content on this site are subject to Intel.com Terms of Use.

Select Your Language

Using Intel.com Search

Quick Links

Recent Searches

Advanced Search

Only search in

Is There a Mechanism to Provision Secrets to an Enclave after Quote has been Verified using Intel® Software Guard Extensions (Intel® SGX) Datacenter Attestation Primitives (DCAP)?

Need more help?

Disclaimer

Using Intel.com Search

Quick Links

Recent Searches

Advanced Search

Only search in

Is There a Mechanism to Provision Secrets to an Enclave after Quote has been Verified using Intel® Software Guard Extensions (Intel® SGX) Datacenter Attestation Primitives (DCAP)?

Related Products

This article applies to 1 products

Need more help?

Disclaimer