gsc icon indicating copy to clipboard operation
gsc copied to clipboard

Published 20 hours ago verified publisher icon gramineproject

Add example of AKS attestation and secret provisioning

Open veenasai2 opened this issue 3 years ago • 1 comments

Signed-off-by: Veena Saini [email protected]

Description of the changes

This PR provides a reference implementation to show how gramine attestation (DCAP) samples works inside AKS cluster. We have created two docker images for ra-tls-secret-prov server and ra-tls-secret-prov client. Both images are deployed as part of AKS confidential compute cluster and both quote generation and quote verification are successful inside AKS cluster.

For client deployment inside AKS cluster, we have gsc/Examples/aks-attestation/aks-secret-prov-client-deployment.yaml and for server deployment gsc/Examples/aks-attestation/aks-secret-prov-server-deployment.yaml file.

For more details, we have created a readme file.

This PR is an updated version of https://github.com/gramineproject/gsc/pull/11.

How to test this PR?

Please follow gsc/Examples/aks-attestation/README.md

This change is Reviewable

veenasai2 avatar Dec 08 '21 17:12 veenasai2

@mkow @woju pls review. We had beaten this up royally over many weeks so hopefully should be a quick one for you :)

aneessahib avatar Dec 15 '21 08:12 aneessahib