constellation/internal/attestation/azure/trustedlaunch/trustedlaunch.go

/*
Copyright (c) Edgeless Systems GmbH

SPDX-License-Identifier: AGPL-3.0-only
*/

/*
# Trusted Launch

Use Azure's trusted launch vTPM to enable a TPM based measure boot Constellation.

# Issuer

Generates a TPM attestation using an attestation key saved in the TPM.
Additionally an endorsement certificate of the key, and corresponding CA certificate chain are added to the attestation document.

# Validator

Verifies the TPM attestation statement using the public key of the endorsement certificate.
The certificate is verified by first verifying its CA certificate chain.
*/
package trustedlaunch
dev-docs: Go package docs (#958) * Remove unused package * Add Go package docs to most packages Signed-off-by: Daniel Weiße <dw@edgeless.systems> Signed-off-by: Fabian Kammel <fk@edgeless.systems> Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> Co-authored-by: Fabian Kammel <fk@edgeless.systems> 2023-01-19 09:57:50 -05:00			`/*`
			`Copyright (c) Edgeless Systems GmbH`

			`SPDX-License-Identifier: AGPL-3.0-only`
			`*/`

			`/*`
			`# Trusted Launch`

			`Use Azure's trusted launch vTPM to enable a TPM based measure boot Constellation.`

			`# Issuer`

			`Generates a TPM attestation using an attestation key saved in the TPM.`
			`Additionally an endorsement certificate of the key, and corresponding CA certificate chain are added to the attestation document.`

			`# Validator`

			`Verifies the TPM attestation statement using the public key of the endorsement certificate.`
			`The certificate is verified by first verifying its CA certificate chain.`
			`*/`
			`package trustedlaunch`