Deploying to Azure¶
Microsoft Azure provides ready-made VMs that support the latest attestation protocols. This document explains the background and provides a walkthrough showing how to get such a VM.
Background: The DCAP protocol¶
If you just want to deploy to Azure as quickly as possible you can skip this section.
There are two protocols for establishing what code is running in an enclave: EPID and DCAP. EPID is an older protocol designed for consumer applications, and as such includes some sophisticated privacy features. For servers where the IP address doesn't need to be hidden (because it's public in DNS to begin with), these features aren't helpful and thus there is DCAP (datacenter attestation primitives). DCAP requires more modern hardware but is otherwise simpler and more robust. You may also see it referred to as "ECDSA attestation".
In DCAP repeating attestation requests aren't forwarded to Intel, but rather served from a cache. A newly installed machine obtains a machine certificate from Intel via the cache which may then be persisted to disk. All this is automated for you.
Because caches are run by cloud providers DCAP supports vendor-specific plugins. Intel provides a default one which requires a subscription.
Azure provides a DCAP plugin that does not require a subscription.
Conclave bundles and uses the Azure plugin by default. The Azure caches are open to the public internet and can actually be used from anywhere. Azure Confidential Computing instances (DC4s_v2) come pre-provisioned for DCAP and as Conclave comes with the necessary libraries bundled, you don't need to do any further setup.
You need to create an Ubuntu 18.04 LTS Gen2 VM from the confidential compute line (named like this: DC?s_v2) where the question mark is the size. Other distributions should work as long as they are on these VMs, but we haven't tested them.
You might have to click "Browse all public and private images" to find
Gen2 image type.
Pick a size that's got plenty of RAM, for example, you might want to click "Select size" to find
Just in case:
- Check that the
/dev/sgx/enclavedevice is present.
- Check driver version
dmesg | grep sgx. Conclave requires driver version 1.33+
- If either check fails:
- Download the driver
- Follow the install instructions
You may need to add your user into
sgx_prv group to give it access to SGX.
Using Docker container(s)¶
If you plan to use a Docker container with DCAP hardware, you must map two different device files like this:
Azure offers a "Confidential Kubernetes" service. At this time we haven't tested Conclave with that. If you try it, let us and the community know if it works (email@example.com)
Code for using DCAP attestation¶
You have to choose attestation method at compile time (see Host.java).
DCAP doesn't require any specific API keys or parameters, so just creating the empty object is sufficient to choose it.