Remote Attestation Enables Verifiable Compute

TEEs are designed to guarantee the confidentiality and integrity of the software running inside them by prohibiting access from the host operating system or even the physical owner. When implemented correctly, the hardware ensures the correctness and confidentiality of the program running inside.

The TEE convinces users that their application is indeed running within a genuine TEE by a protocol called Remote Attestation. It ensures:

With Remote Attestation, complex computing tasks can be offloaded to TEE but verified onchain.

Workflow of Remote Attestation

Attestation is implemented by signing a message with the measurement of the program and the environment, by a special key only known to the hardware. The attestation is verified when the signature of the message is cryptographically verified.

The attestation protocols vary by different processor vendors. Intel SGX, the most popular TEE, uses DCAP as its remote attestation protocol.

Report Generation

Collateral Preparation

Verification