Fortanix Confidential Computing Manager (CCM) can whitelist EnclaveOS applications. The enclave related properties of the application are included for the application while whitelisting. This includes the identity or hash of the enclave (MRENCLAVE), the identity of the signer of the enclave (MRSIGNER), product identifier (ISVPRODID),
security version number (ISVSVN). When the enclave runs and presents its attestation to the Fortanix CCM, all of these values are included in the attestation report, which can be used by the Fortanix CCM to determine whether to accept the attestation.
For more details on how to whitelist an application using Fortanix CCM, refer to the article: User's Guide: Tasks
Comments
Please sign in to leave a comment.