Native Python interface for the AWS Nitro Secure Module (NSM)
Project description
AWS Nitro Secure Module (NSM) interface in native Python
This library offers a native Python interface to the /dev/nsm
device in AWS Nitro Enclaves. This is an updated version from aws-nsm-interface.
Installation
To install aws_nsm_interface_verifiably
, run:
pip install aws_nsm_interface_verifiably
Requirements
- To install: python>=3.6
- To run: a Python application running in an AWS Nitro Enclave
Quickstart
import base64
import aws_nsm_interface_verifiably
file_desc = aws_nsm_interface_verifiably.open_nsm_device()
rand_bytes = aws_nsm_interface_verifiably.get_random(file_desc, 12) # Get 12 random bytes from /dev/nsm
print(rand_bytes)
public_rsa_key = b'1234' # An RSA public key exported as DER
attestation_doc = aws_nsm_interface_verifiably.get_attestation_doc(
file_desc,
public_key=public_rsa_key
)['document']
attestation_doc_b64 = base64.b64encode(attestation_doc).decode('utf-8')
aws_nsm_interface_verifiably.close_nsm_device(file_desc)
# Use `attestation_doc_b64` in your AWS KMS Decrypt call
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for aws-nsm-interface-verifiably-1.0.1.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 2e28b97bc2f001ee982504489330ba305ad4beb9e5a049f27e3e177fa9df7213 |
|
MD5 | 7bb71f95fabf4fd739aed2227765d2c6 |
|
BLAKE2b-256 | 14735bebf29c27bf0dd706f2193a701357dccb9994e031585640fe1c0f3745d2 |
Close
Hashes for aws_nsm_interface_verifiably-1.0.1-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 23c34196ef6a5d6f33e3af89a897c994d52298b9d9acf589e95692f136e2b685 |
|
MD5 | b7455cfedbf9341dedd081ee918a26bf |
|
BLAKE2b-256 | 46b382c0cfd78df8abcfc20ac8921c15fc8744540d60798fdbdefa2db4d74fc8 |