AttestationResult Class
Represents the claims returned from the attestation service as a result of a call to attest_sgx_enclave, or attest_open_enclave.
- Inheritance
-
builtins.objectAttestationResult
Constructor
AttestationResult(**kwargs: Any)
Parameters
- issuer
- str
Entity which issued the attestation token.
- version
- str
Version of the token. Must be "1.0"
- verifier_type
- str
Verifier which generated this token.
- policy_signer
- AttestationSigner or None
If the policy which processed the request is signed, this will be the certificate which signed the policy.
- policy_hash
- str
The hash of the policy which processed the attestation evidence.
- is_debuggable
- bool
True if a debugger can be attached to the SGX enclave being attested.
- product_id
- int
Product ID for the SGX enclave being attested.
- mr_enclave
- str
MRENCLAVE value for the SGX enclave being attested.
- mr_signer
- str
MRSIGNER value for the SGX enclave being attested.
- svn
- int
Security version number for the SGX enclave being attested.
- sgx_collateral
- dict
Collateral which identifies the collateral used to create the token.
Attributes
enclave_held_data
Returns the value of the runtime_data field specified as an input to the attest_sgx_enclave or attest_open_enclave API.
Note
The enclave_held_data property will only be populated if the
runtime_data parameter to the Attest API is specified.
Return type
inittime_claims
Returns the inittime claims in the token.
This value will match the input inittime_json property to the attest_sgx_enclave or attest_open_enclave API.
Note
The inittime_claims property will only be populated if the
inittime_json parameter to the Attest API is specified. It will
not be populated if the inittime_data parameter is specified.
Return type
is_debuggable
Returns "True" if the source evidence being attested indicates that the TEE has debugging enabled.
Return type
issuer
Returns the issuer of the attestation token.
The issuer for the token MUST be the same as the endpoint associated with the AttestationClient object. If it is not, then the token should be rejected.
See RFC 7519 Section 4.1.1 for details.
Return type
mr_enclave
mr_signer
nonce
policy_claims
Returns the claims for the token generated by attestation policy.
Return type
policy_hash
Returns the base64url encoded SHA256 hash of the base64url encoded attestation policy which was applied when generating this token.
Return type
policy_signer
Returns the signing certificate which was used to sign the policy which was applied when the token was generated.
Return type
product_id
runtime_claims
Returns the runtime claims in the token.
This value will match the input runtime_json property to the attest_sgx_enclave or attest_open_enclave API.
Note
The runtime_claims property will only be populated if the
runtime_json parameter to the Attest API is specified. It will
not be populated if the runtime_data parameter is specified.
Return type
sgx_collateral
Returns a set of information describing the complete set of inputs to the oe_verify_evidence
Return type
svn
unique_id
Returns a unique ID claim for the attestation token.
If present, the unique_id property can be used to distinguish between different attestation tokens.
See RFC 7519 Section 4.1.7 for details.
Return type
verifier_type
version
Feedback
Submit and view feedback for