Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Handle mitigated security advisories list correctly #217

Open
2 tasks
hu55a1n1 opened this issue Sep 26, 2024 · 0 comments
Open
2 tasks

Handle mitigated security advisories list correctly #217

hu55a1n1 opened this issue Sep 26, 2024 · 0 comments
Labels
sgx Issues related to SGX / TEE development

Comments

@hu55a1n1
Copy link
Member

Summary

  • This is currently hardcoded in quartz-cw which is fine for v0.1 ->

    cycles-quartz/cosmwasm/packages/quartz-cw/src/handler/execute/attested.rs

    Line 111 in d536f12

    ["INTEL-SA-00334", "INTEL-SA-00615"],
  • Gramine already applies SAs. So we could look at the quote from our Azure machine and just use the SAs from there.
  • Ideally, enclave devs should be able to set these based on the security profile they're comfortable with.

(Thanks to @amiller for his inputs.)

Acceptance Criteria

  • Short term we use the SAs from our quote.
  • Long term we give app devs the ability to specify this themselves (say in a config).
@hu55a1n1 hu55a1n1 added the sgx Issues related to SGX / TEE development label Sep 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
sgx Issues related to SGX / TEE development
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@hu55a1n1