---
title: "How does the attestation process guarantee code integrity?"
slug: "how-does-the-attestation-process-guarantee-code-integrity"
updated: 2024-06-12T20:11:18Z
published: 2024-06-12T20:11:18Z
---

> ## Documentation Index
> Fetch the complete documentation index at: https://support.fortanix.com/llms.txt
> Use this file to discover all available pages before exploring further.

# How does the attestation process guarantee code integrity?

- Application Attestation: (Code Integrity)
  - When the enclave application starts, it first starts the application attestation process.
  - The Enclave application generates an attestation report and sends it to the Node Agent.
  - The Node Agent signs that report with its certificate.
  - The Enclave application generates a CSR with the above report and sends it back to the Node Agent.
  - The Node agent forwards this CSR to Fortanix CCM and gets it checked.
  - If the attestation is passed, then Fortanix CCM issues a certificate to the enclave.

## Related

- [What are validity periods in Fortanix CCM?](/what-are-validity-periods-in-fortanix-ccm.md)
- [Fortanix DSM for Mutual Transport Layer Security (on-prem only)](/mutual-transport-layer-security-using-fortanix-dsm-on-prem-only.md)
- [Using Fortanix Confidential Computing Manager to Build an Enclave OS Nginx Application](/using-fortanix-ccm-to-build-an-enclave-os-nginx-application.md)