TEE attestation library for AMD SEV-SNP and Intel TDX platforms
Project description
FHEnom TEE Attestation Library
A Python library for generating and verifying TEE (Trusted Execution Environment) attestation reports across different hardware platforms.
Features
- Multi-Platform Support: AMD SEV-SNP and Intel TDX
- Unified API: Single interface for all TEE platforms
- Cryptographic Verification: Full certificate chain validation
- Production Ready: Used in FHEnom AI confidential computing platform
Supported Platforms
- ✅ AMD SEV-SNP (Secure Encrypted Virtualization - Secure Nested Paging)
- 🚧 Intel TDX (Trust Domain Extensions) - Coming soon
Installation
Basic Installation (Python API only)
pip install fhenom-tee-attestation
With Rust Module (for actual attestation generation/verification)
The Rust module is required for generating reports inside a TEE and verifying reports. It requires Rust toolchain:
# Install Rust
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
# Install maturin
pip install maturin
# Clone and build
git clone https://devops.datakrypto.com/DataKrypto/_git/fhenom_tee_attestation
cd fhenom_tee_attestation/rust_lib
maturin develop --release
Quick Start
Generate an Attestation Report (Inside TEE)
from dk_tee_attestation import AttestationEngineFactory, AttestationEngineType
# Create AMD SEV-SNP engine
engine = AttestationEngineFactory.get(AttestationEngineType.amd_sev_snp)
# Generate report with nonce (must be 64 bytes)
nonce = b"your_nonce_here" + b"\x00" * (64 - len(b"your_nonce_here"))
report_bytes = engine.get_report(nonce)
# Save for verification
with open("attestation_report.bin", "wb") as f:
f.write(report_bytes)
Verify an Attestation Report (Verifier Side)
from dk_tee_attestation import AttestationEngineFactory, AttestationEngineType
# Create engine
engine = AttestationEngineFactory.get(AttestationEngineType.amd_sev_snp)
# Load report
with open("attestation_report.bin", "rb") as f:
report_bytes = f.read()
# Verify (raises exception on failure)
nonce = b"your_nonce_here" + b"\x00" * (64 - len(b"your_nonce_here"))
try:
engine.verify_report(report_bytes, nonce)
print("✓ Attestation verified successfully!")
except Exception as e:
print(f"✗ Verification failed: {e}")
API Reference
Factory Pattern
from dk_tee_attestation import AttestationEngineFactory, AttestationEngineType
# Get AMD SEV-SNP engine
engine = AttestationEngineFactory.get(AttestationEngineType.amd_sev_snp)
# Get Intel TDX engine (when available)
# engine = AttestationEngineFactory.get(AttestationEngineType.intel_tdx)
AttestationEngine Interface
get_report(report_data: bytes) -> bytes
Generate a TEE attestation report.
Parameters:
report_data(bytes): Nonce/challenge, must be exactly 64 bytes
Returns:
- Raw attestation report bytes
Raises:
ReportDataError: If report_data is invalidFirmwareOpenErrorAmdSevSnp: If TEE firmware is unavailable
verify_report(report_bytes: bytes, expected_report_data: bytes) -> None
Verify a TEE attestation report.
Parameters:
report_bytes(bytes): Raw attestation report to verifyexpected_report_data(bytes): Expected nonce, must be exactly 64 bytes
Returns:
- None on successful verification
Raises:
ReportDataError: If nonce doesn't matchKdsFetchError: If certificate fetch failsCertChainError: If certificate chain is invalidSignatureError: If signature verification failsMetadataMismatchError: If metadata doesn't match
Exception Hierarchy
AttestationError (base)
├── ReportDataError
├── ReportBytesError
├── KdsFetchError
├── CertChainError
├── MetadataMismatchError
├── SignatureError
├── UnsupportedChipFamilyError
├── UnsupportedEngine
├── FirmwareOpenErrorAmdSevSnp
└── AttestationParseErrorAmdSevSnp
Verification Process
AMD SEV-SNP Verification Steps
- Parse Report: Extract structured data from raw bytes
- Validate Nonce: Ensure nonce matches expected value
- Fetch Certificates: Retrieve ARK, ASK, and VCEK from AMD KDS
- Verify Chain: Validate certificate chain signatures
- Check Metadata: Ensure TCB and hardware ID match
- Verify Signature: Validate report signature with VCEK
Integration with FHEnom AI
This library is integrated into the FHEnom AI SDK:
# Install FHEnom AI with attestation support
pip install fhenomai
# Use via FHEnom AI client
from fhenomai import FHEnomClient
client = FHEnomClient.from_config()
result = client.admin.verify_attestation(report_bytes, nonce_hex)
Requirements
- Python >= 3.8
- cryptography >= 46.0.0
- requests >= 2.32.0
Optional (for report generation/verification):
- Rust toolchain (for building native module)
- maturin >= 1.11.0
Platform-Specific Notes
AMD SEV-SNP
- Requires access to
/dev/sev-guestdevice for report generation - Fetches certificates from AMD Key Distribution Service (KDS)
- Supports Milan, Genoa, and Turin processor families
Intel TDX
- Coming soon
Use Cases
- Remote Attestation: Prove code runs in genuine TEE
- Zero-Trust Security: Establish trust before sensitive operations
- Compliance: Demonstrate hardware-backed security
- Confidential Computing: Verify encrypted model execution
Development
Building from Source
git clone https://devops.datakrypto.com/DataKrypto/_git/fhenom_tee_attestation
cd fhenom_tee_attestation
# Install in development mode
pip install -e .
# Build Rust module
cd rust_lib
maturin develop --release
Running Examples
See the python_license_manager_example/ and python_sev_snp_tee_example/ directories for complete working examples.
Security Considerations
- Nonce Generation: Always use cryptographically secure random nonces
- Nonce Storage: Store nonces securely for verification
- Certificate Validation: Library automatically validates full certificate chain
- Network Security: Certificate fetching uses HTTPS to AMD KDS
License
This project is licensed under the MIT License - see the LICENSE file for details.
Support
- Documentation: FHEnom AI Docs
- Issues: GitHub Issues
- Email: support@datakrypto.ai
Acknowledgments
- AMD for SEV-SNP platform and KDS infrastructure
- Rust cryptography ecosystem
- PyO3 for Python-Rust bindings
Related Projects
- FHEnom AI - Confidential AI platform
- AMD SEV-SNP Documentation
Made with ❤️ by DataKrypto
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distributions
No source distribution files available for this release.See tutorial on generating distribution archives.
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file dk_tee_attestation-0.2.2-cp312-cp312-manylinux_2_34_x86_64.whl.
File metadata
- Download URL: dk_tee_attestation-0.2.2-cp312-cp312-manylinux_2_34_x86_64.whl
- Upload date:
- Size: 278.9 kB
- Tags: CPython 3.12, manylinux: glibc 2.34+ x86-64
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
09ed8902af321d20a460a5fb90a94ffb7145a0e27005b2efde121338bdb093df
|
|
| MD5 |
42aa73521921c757e83b0ca97c174483
|
|
| BLAKE2b-256 |
c4d2ef2812c06bcd0dd954b8058d36336c7f37689feefeaf472e4a5bf6aba701
|
