docs: document STACKIT CC features

Co-Authored-By: Moritz Eckert <m1gh7ym0@gmail.com>
2025-06-21 04:34:22 -04:00 · 2024-03-08 15:06:13 +01:00 · 2024-03-08 15:06:13 +01:00 · 353b02c17c
commit 353b02c17c
parent 63b9761962
5 changed files with 75 additions and 16 deletions
--- a/docs/versioned_docs/version-2.16/architecture/attestation.md
+++ b/docs/versioned_docs/version-2.16/architecture/attestation.md
@ -251,13 +251,15 @@ You may customize certain parameters for verification of the attestation stateme
 </tabItem>
 <tabItem value="gcp" label="GCP">

+On GCP, AMD SEV-ES is used to provide runtime encryption to the VMs.
+The hypervisor-based vTPM is used to establish trust in the VM via [runtime measurements](#runtime-measurements).
 There is no additional configuration available for GCP.

 </tabItem>
 <tabItem value="aws" label="AWS">

 On AWS, AMD SEV-SNP is used to provide runtime encryption to the VMs.
-An SEV-SNP attestation report is used to establish trust in the VM and it's vTPM.
+An SEV-SNP attestation report is used to establish trust in the VM.
 You may customize certain parameters for verification of the attestation statement using the Constellation config file.

 * TCB versions
@ -275,6 +277,13 @@ You may customize certain parameters for verification of the attestation stateme
  This is the intermediate certificate for verifying the SEV-SNP report's signature.
  If it's not specified, the CLI fetches it from the AMD key distribution server.

+</tabItem>
+<tabItem value="stackit" label="STACKIT">
+
+On STACKIT, AMD SEV-ES is used to provide runtime encryption to the VMs.
+The hypervisor-based vTPM is used to establish trust in the VM via [runtime measurements](#runtime-measurements).
+There is no additional configuration available for STACKIT.
+
 </tabItem>
 </tabs>