Date   

Updated Event: OE SDK Sig-Architecture on Tuesday evenings #cal-invite

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

OE SDK Sig-Architecture on Tuesday evenings

When:
Tuesday, 27 October 2020
5:30pm to 6:30pm
(UTC-07:00) America/Los Angeles
Repeats: Every 2 weeks on Tuesday

Where:
SIG-Architecture on Zoom

Organizer: Radhika Jandhyala radhikaj@...

Description:

Meeting agenda and minutes: https://hackmd.io/@aeva/oesdk-sig-arch.

Join Zoom Meeting 
https://zoom.us/j/95309871627?pwd=K1RmbmZtUUowNFhRbWFZRVN4R2VmUT09

Meeting ID: 953 0987 1627 
Password: 208079 
One tap mobile 
+12532158782,,95309871627#,,1#,208079# US (Tacoma) 
+16699006833,,95309871627#,,1#,208079# US (San Jose)

Dial by your location 
        +1 253 215 8782 US (Tacoma) 
        +1 669 900 6833 US (San Jose) 
        +1 346 248 7799 US (Houston) 
        +1 301 715 8592 US (Germantown) 
        +1 312 626 6799 US (Chicago) 
        +1 929 205 6099 US (New York) 
        888 788 0099 US Toll-free 
        877 853 5247 US Toll-free 
Meeting ID: 953 0987 1627 
Password: 208079 
Find your local number: https://zoom.us/u/abCkV8PQIw


Updated Event: OE SDK SIG-Architecture Meeting #cal-invite

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

OE SDK SIG-Architecture Meeting

When:
Tuesday, 13 October 2020
10:00am to 11:00am
(UTC-07:00) America/Los Angeles
Repeats: Weekly on Tuesday

Where:
https://zoom.us/j/95309871627?pwd=K1RmbmZtUUowNFhRbWFZRVN4R2VmUT09

Organizer: Aeva aevander@...

Description:

Meeting agenda and minutes: https://hackmd.io/@aeva/oesdk-sig-arch.

Join Zoom Meeting
https://zoom.us/j/95309871627?pwd=K1RmbmZtUUowNFhRbWFZRVN4R2VmUT09

Meeting ID: 953 0987 1627
Password: 208079
One tap mobile
+12532158782,,95309871627#,,1#,208079# US (Tacoma)
+16699006833,,95309871627#,,1#,208079# US (San Jose)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 669 900 6833 US (San Jose)
        +1 346 248 7799 US (Houston)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        888 788 0099 US Toll-free
        877 853 5247 US Toll-free
Meeting ID: 953 0987 1627
Password: 208079
Find your local number: https://zoom.us/u/abCkV8PQIw


Updated Event: OE SDK SIG-Architecture Meeting #cal-invite

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

OE SDK SIG-Architecture Meeting

When:
Tuesday, 29 September 2020
5:30pm to 6:30pm
(UTC-07:00) America/Los Angeles
Repeats: Weekly on Tuesday

Where:
https://zoom.us/j/95309871627?pwd=K1RmbmZtUUowNFhRbWFZRVN4R2VmUT09

Organizer: Aeva aevander@...

Description:

Meeting agenda and minutes: https://hackmd.io/@aeva/oesdk-sig-arch.

Join Zoom Meeting
https://zoom.us/j/95309871627?pwd=K1RmbmZtUUowNFhRbWFZRVN4R2VmUT09

Meeting ID: 953 0987 1627
Password: 208079
One tap mobile
+12532158782,,95309871627#,,1#,208079# US (Tacoma)
+16699006833,,95309871627#,,1#,208079# US (San Jose)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 669 900 6833 US (San Jose)
        +1 346 248 7799 US (Houston)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        888 788 0099 US Toll-free
        877 853 5247 US Toll-free
Meeting ID: 953 0987 1627
Password: 208079
Find your local number: https://zoom.us/u/abCkV8PQIw


Event: OE SDK Sig-Architecture on Tuesday evenings #cal-invite

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

OE SDK Sig-Architecture on Tuesday evenings

When:
Tuesday, 29 September 2020

Where:
SIG-Architecture on Zoom

Organizer: Radhika Jandhyala radhikaj@...

Description:

Meeting agenda and minutes: https://hackmd.io/@aeva/oesdk-sig-arch.

Join Zoom Meeting 
https://zoom.us/j/95309871627?pwd=K1RmbmZtUUowNFhRbWFZRVN4R2VmUT09

Meeting ID: 953 0987 1627 
Password: 208079 
One tap mobile 
+12532158782,,95309871627#,,1#,208079# US (Tacoma) 
+16699006833,,95309871627#,,1#,208079# US (San Jose)

Dial by your location 
        +1 253 215 8782 US (Tacoma) 
        +1 669 900 6833 US (San Jose) 
        +1 346 248 7799 US (Houston) 
        +1 301 715 8592 US (Germantown) 
        +1 312 626 6799 US (Chicago) 
        +1 929 205 6099 US (New York) 
        888 788 0099 US Toll-free 
        877 853 5247 US Toll-free 
Meeting ID: 953 0987 1627 
Password: 208079 
Find your local number: https://zoom.us/u/abCkV8PQIw


Updated Event: OE SDK SIG-Testing Meeting #cal-invite

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

OE SDK SIG-Testing Meeting

When:
Tuesday, 6 October 2020
5:30pm to 6:30pm
(UTC-07:00) America/Los Angeles
Repeats: Every 2 weeks on Tuesday

Where:
https://zoom.us/j/99740211738?pwd=azU5VTFRNmtQY2hXeVZRbTlvQ3dodz09

Organizer: Aeva aevander@...

Description:

A meeting to discuss all things testing!

Note the half-hour offset start time; this is to support the PRC team joining in their morning.

Agenda and Minutes: https://hackmd.io/@aeva/oesdk-sig-testing

Join Zoom Meeting
https://zoom.us/j/99740211738?pwd=azU5VTFRNmtQY2hXeVZRbTlvQ3dodz09

Meeting ID: 997 4021 1738
Password: 997291
One tap mobile
+12532158782,,99740211738#,,1#,997291# US (Tacoma)
+13462487799,,99740211738#,,1#,997291# US (Houston)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 346 248 7799 US (Houston)
        +1 669 900 6833 US (San Jose)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        877 853 5247 US Toll-free
        888 788 0099 US Toll-free
Meeting ID: 997 4021 1738
Password: 997291
Find your local number: https://zoom.us/u/abd2Ki34yF

 


Deprecation of Support for Ubuntu 16.04

Radhika Jandhyala
 

Hi,

We plan to drop support for Ubuntu 16.04 after Dec 2020. Partners using Ubuntu 16.04 should plan on upgrading to Ubuntu 18.04 or Ubuntu 20.04(being targeted for v0.14 release).

https://github.com/openenclave/openenclave/issues/3625 tracks this.

Please comment on the issue with questions and concerns you have regarding this.

Thanks,
Radhika


Open Enclave SDK SIG-Attestation Meeting Series - Wed, 10/07/2020 #cal-notice

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

Open Enclave SDK SIG-Attestation Meeting Series

When:
Wednesday, 7 October 2020
10:00am to 11:00am
(GMT-07:00) America/Los Angeles

Where:
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

Organizer:
radhikaj@...

Description:
Please join us for technical discussions related Attestation in the Open Enclave SDK.

Join Zoom Meeting
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

 

Agenda and Minutes:  https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A

Meeting ID: 995 5293 2630
Password: 010209
One tap mobile
+12532158782,,99552932630#,,1#,010209# US (Tacoma)
+13462487799,,99552932630#,,1#,010209# US (Houston)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 346 248 7799 US (Houston)
        +1 669 900 6833 US (San Jose)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        +1 301 715 8592 US (Germantown)
        877 853 5247 US Toll-free
        888 788 0099 US Toll-free
Meeting ID: 995 5293 2630
Password: 010209
Find your local number: https://zoom.us/u/au4r6sLy7


Open Enclave SDK Sig-Testing meeting canceled for 10/6/2020

Radhika Jandhyala
 

Hi,

The SIG-Testing meeting scheduled for 10/6/2020, 5:30 PST is cancelled.

Thanks,
Radhika


Open Enclave SDK SIG-Attestation Meeting Series - Wed, 09/30/2020 #cal-notice

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

Open Enclave SDK SIG-Attestation Meeting Series

When:
Wednesday, 30 September 2020
10:00am to 11:00am
(GMT-07:00) America/Los Angeles

Where:
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

Organizer:
radhikaj@...

Description:
Please join us for technical discussions related Attestation in the Open Enclave SDK.

Join Zoom Meeting
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

 

Agenda and Minutes:  https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A

Meeting ID: 995 5293 2630
Password: 010209
One tap mobile
+12532158782,,99552932630#,,1#,010209# US (Tacoma)
+13462487799,,99552932630#,,1#,010209# US (Houston)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 346 248 7799 US (Houston)
        +1 669 900 6833 US (San Jose)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        +1 301 715 8592 US (Germantown)
        877 853 5247 US Toll-free
        888 788 0099 US Toll-free
Meeting ID: 995 5293 2630
Password: 010209
Find your local number: https://zoom.us/u/au4r6sLy7


SIG-Arch:Tuesday, Sep 29th, 5:30 PM PST

Radhika Jandhyala
 

Hi,

Instead of having a SIG-Testing meeting on Tuesday, Sep 29th, 5:30 PM PST, we will instead have a SIG-Arch meeting.
Please add items to the agenda by Sep 28th 6:00 PM PST.


he agenda is here: https://hackmd.io/@aeva/oesdk-sig-arch.

Join Zoom Meeting
https://zoom.us/j/95309871627?pwd=K1RmbmZtUUowNFhRbWFZRVN4R2VmUT09

Meeting ID: 953 0987 1627
Password: 208079
One tap mobile
+12532158782,,95309871627#,,1#,208079# US (Tacoma)
+16699006833,,95309871627#,,1#,208079# US (San Jose)

Dial by your location
+1 253 215 8782 US (Tacoma)
+1 669 900 6833 US (San Jose)
+1 346 248 7799 US (Houston)
+1 301 715 8592 US (Germantown)
+1 312 626 6799 US (Chicago)
+1 929 205 6099 US (New York)
888 788 0099 US Toll-free
877 853 5247 US Toll-free
Meeting ID: 953 0987 1627
Password: 208079
Find your local number: https://zoom.us/u/abCkV8PQIw
Thanks,
Radhika


Open Enclave SDK SIG-Attestation Meeting Series - Wed, 09/23/2020 #cal-notice

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

Open Enclave SDK SIG-Attestation Meeting Series

When:
Wednesday, 23 September 2020
10:00am to 11:00am
(GMT-07:00) America/Los Angeles

Where:
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

Organizer:
radhikaj@...

Description:
Please join us for technical discussions related Attestation in the Open Enclave SDK.

Join Zoom Meeting
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

 

Agenda and Minutes:  https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A

Meeting ID: 995 5293 2630
Password: 010209
One tap mobile
+12532158782,,99552932630#,,1#,010209# US (Tacoma)
+13462487799,,99552932630#,,1#,010209# US (Houston)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 346 248 7799 US (Houston)
        +1 669 900 6833 US (San Jose)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        +1 301 715 8592 US (Germantown)
        877 853 5247 US Toll-free
        888 788 0099 US Toll-free
Meeting ID: 995 5293 2630
Password: 010209
Find your local number: https://zoom.us/u/au4r6sLy7


OpenEnclave SDK v0.11.0 Release

Radhika Jandhyala
 

Hello everyone,

The 0.11.0 version of the Open Enclave SDK has been released.

You can find the release page for v0.11.0 in the link below, where you can download the packages/sources and find the changelog:

https://github.com/openenclave/openenclave/releases/tag/v0.11.0

For the Ubuntu 16.04 and 18.04 packages: they will be published to the production packages.microsoft.com APT repo (for each distro) later this week.

For the Windows NuGet packages: They will be on nuget.org later this week, but for now you can download the NuGet packages available in the "Assets" field in release link above.

Thank you so much to everyone in helping us drive and deliver this release! Please use our GitHub repo to report any issues that you may come across in your use of the SDK!

Thanks,
Radhika


From: Radhika Jandhyala
Sent: Friday, September 4, 2020 2:07 PM
To: oesdk@lists.confidentialcomputing.io
Subject: OpenEnclave SDK v0.11.0-RC1 Release

Hi,

Open Enclave version 0.11.0 will soon be published, and we want to send out some release candidate packages (for Windows Server 2016 and 2019, Ubuntu 16.04/18.04) for pre-release testing. You can find the release candidate packages on GitHub below under the v0.11.0-rc1 tag:

https://github.com/openenclave/openenclave/releases<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fopenenclave%2Fopenenclave%2Freleases&data=02%7C01%7Cradhikaj%40microsoft.com%7C9b906ec7b73c4fa7da1808d7a0826790%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637154354265332253&sdata=e0DQ36Qk5d2DJ3DrkM0ZjYzzPODpk8%2BjfpqD3tja1Ls%3D&reserved=0>

Please test these packages and let us know if you come across any issues. Thank you so much for your help!

To the Committers of the OE SDK: Please let us know if we have missed anything in the release notes. We should update our CHANGELOG if so.

Thank you so much to everyone in helping us drive and deliver this release! Please use our GitHub repo to report any issues that you may come across in your use of the SDK!


Release Notes

Added

* Open Enclave SDK release packages can now be built on non-SGX and non-FLC machines.
* Support for arbitrarily large thread-local data for SGX machines.
* Experimental support for OpenSSL inside enclaves has been added while building the SDK from source.
* Use BUILD_OPENSSL flag while compiling the SDK.
* OpenSSLSupport.md<https://github.com/openenclave/openenclave/blob/v0.11.0-rc1/docs/OpenSSLSupport.md> documents supported options and configuration needed to use OpenSSL inside an enclave.
* Custom claims buffer serialization/de-serialization helper functions.
* SGX attestation endorsement claims from oe_verify_evidence() will contain the following:
* OE_CLAIM_SGX_TCB_INFO
* OE_CLAIM_SGX_TCB_ISSUER_CHAIN
* OE_CLAIM_SGX_PCK_CRL
* OE_CLAIM_SGX_ROOT_CA_CRL
* OE_CLAIM_SGX_CRL_ISSUER_CHAIN
* OE_CLAIM_SGX_QE_ID_INFO
* OE_CLAIM_SGX_QE_ID_ISSUER_CHAIN
* The attestation functions in local_attestation/remote_attestation/attested_tls/host_verify samples now use attestation plugin APIs, defined in attestation/attester.h and attestation/verifier.h to generate and verify evidence.
* oe_get_evidence() support for generation of SGX EPID evidences, in formats OE_FORMAT_UUID_SGX_EPID_LINKABLE and OE_FORMAT_UUID_SGX_EPID_UNLINKABLE.

Changed

* Rename the custom claims buffer added by oe_get_evidence from "custom_claims" to "custom_claims_buffer". Likewise, replace the OE_CLAIM_CUSTOM_CLAIMS definition for this name with OE_CLAIM_CUSTOM_CLAIMS_BUFFER.
* Building SDK from source
- HAS_QUOTE_PROVIDER cmake option has been removed. This is a continuation of the work in the previous release to allow the same build of OE SDK to run on both FLC and non-FLC machines.
- Intel SGX EnclaveCommonAPI packages are no longer needed to build the SDK.
- COMPILE_SYSTEM_EDL option has been removed.

* oe_verify_attestation_certificate_with_evidence() can now verify certificates generated by oe_generate_attestation_certificate() as well as oe_get_attestation_certificate_with_evidence().
* The SGX attestation evidence internal structure has changed. The current structure (version 3) is not compatible with the previous version. Applications that call oe_get_evidence() or oe_verify_evidence() have to be rebuilt.
* Some SGX attestation format IDs have been renamed:
Old
New
OE_FORMAT_UUID_SGX_ECDSA_P256
OE_FORMAT_UUID_SGX_ECDSA
OE_FORMAT_UUID_SGX_ECDSA_P256_REPORT
OE_FORMAT_UUID_LEGACY_REPORT_REMOTE
OE_FORMAT_UUID_SGX_ECDSA_P256_QUOTE
OE_FORMAT_UUID_RAW_SGX_QUOTE_ECDSA
Removed

* Declaration of SGX format ID OE_FORMAT_UUID_SGX_ECDSA_P384 is removed.

* oe_get_evidence() support of SGX legacy formats OE_FORMAT_UUID_SGX_ECDSA_P256_REPORT and OE_FORMAT_UUID_SGX_ECDSA_P256_QUOTE is removed.

Security

* Update mbedTLS to version 2.16.7. Refer to the 2.16.7 release notes<https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.7> for the set of
issues addressed.
Thanks,
Rahdika


Open Enclave SDK SIG-Attestation Meeting Series - Wed, 09/16/2020 #cal-notice

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

Open Enclave SDK SIG-Attestation Meeting Series

When:
Wednesday, 16 September 2020
10:00am to 11:00am
(GMT-07:00) America/Los Angeles

Where:
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

Organizer:
radhikaj@...

Description:
Please join us for technical discussions related Attestation in the Open Enclave SDK.

Join Zoom Meeting
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

 

Agenda and Minutes:  https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A

Meeting ID: 995 5293 2630
Password: 010209
One tap mobile
+12532158782,,99552932630#,,1#,010209# US (Tacoma)
+13462487799,,99552932630#,,1#,010209# US (Houston)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 346 248 7799 US (Houston)
        +1 669 900 6833 US (San Jose)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        +1 301 715 8592 US (Germantown)
        877 853 5247 US Toll-free
        888 788 0099 US Toll-free
Meeting ID: 995 5293 2630
Password: 010209
Find your local number: https://zoom.us/u/au4r6sLy7


Open Enclave SDK Sig-Attestation meeting canceled for 9/16/2020

Yen Lee
 

Hi,

The SIG-Attestation meeting scheduled for 9/16/2020, 10:00 AM PDT is cancelled because there are no topics to discuss at this time.

Thanks.

Yen


Open Enclave SDK Sig-Testing meeting canceled for 9/15/2020

Radhika Jandhyala
 

Hi,

The SIG-Testing meeting scheduled for 9/15/2020, 5:30 PST is cancelled because there are no topics to discuss at this time.

Thanks,
Radhika


Deprecation of support for WS2016

Radhika Jandhyala
 

Hi,

We plan to drop support for WS2016 after Dec 2020. Developers and partners using WS2016 will need to move to using WS2019 by then.
https://github.com/openenclave/openenclave/issues/3539 tracks this.

Please comment on the issue with questions and concerns you have regarding this.

Thanks,
Radhika


Open Enclave SDK SIG-Attestation Meeting Series - Wed, 09/09/2020 #cal-notice

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

Open Enclave SDK SIG-Attestation Meeting Series

When:
Wednesday, 9 September 2020
10:00am to 11:00am
(GMT-07:00) America/Los Angeles

Where:
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

Organizer:
radhikaj@...

Description:
Please join us for technical discussions related Attestation in the Open Enclave SDK.

Join Zoom Meeting
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

 

Agenda and Minutes:  https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A

Meeting ID: 995 5293 2630
Password: 010209
One tap mobile
+12532158782,,99552932630#,,1#,010209# US (Tacoma)
+13462487799,,99552932630#,,1#,010209# US (Houston)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 346 248 7799 US (Houston)
        +1 669 900 6833 US (San Jose)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        +1 301 715 8592 US (Germantown)
        877 853 5247 US Toll-free
        888 788 0099 US Toll-free
Meeting ID: 995 5293 2630
Password: 010209
Find your local number: https://zoom.us/u/au4r6sLy7


Open Eclave SDK Sig-Testing meeting canceled for 9/8/2020

Radhika Jandhyala
 

Hi,

The SIG-Testing meeting scheduled for 9/8/2020, 5:30 PST is cancelled because there are no topics to discuss at this time.

Thanks,
Radhika


OpenEnclave SDK v0.11.0-RC1 Release

Radhika Jandhyala
 

Hi,

Open Enclave version 0.11.0 will soon be published, and we want to send out some release candidate packages (for Windows Server 2016 and 2019, Ubuntu 16.04/18.04) for pre-release testing. You can find the release candidate packages on GitHub below under the v0.11.0-rc1 tag:

https://github.com/openenclave/openenclave/releases<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fopenenclave%2Fopenenclave%2Freleases&data=02%7C01%7Cradhikaj%40microsoft.com%7C9b906ec7b73c4fa7da1808d7a0826790%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637154354265332253&sdata=e0DQ36Qk5d2DJ3DrkM0ZjYzzPODpk8%2BjfpqD3tja1Ls%3D&reserved=0>

Please test these packages and let us know if you come across any issues. Thank you so much for your help!

To the Committers of the OE SDK: Please let us know if we have missed anything in the release notes. We should update our CHANGELOG if so.

Thank you so much to everyone in helping us drive and deliver this release! Please use our GitHub repo to report any issues that you may come across in your use of the SDK!


Release Notes

Added

* Open Enclave SDK release packages can now be built on non-SGX and non-FLC machines.
* Support for arbitrarily large thread-local data for SGX machines.
* Experimental support for OpenSSL inside enclaves has been added while building the SDK from source.
* Use BUILD_OPENSSL flag while compiling the SDK.
* OpenSSLSupport.md<https://github.com/openenclave/openenclave/blob/v0.11.0-rc1/docs/OpenSSLSupport.md> documents supported options and configuration needed to use OpenSSL inside an enclave.
* Custom claims buffer serialization/de-serialization helper functions.
* SGX attestation endorsement claims from oe_verify_evidence() will contain the following:
* OE_CLAIM_SGX_TCB_INFO
* OE_CLAIM_SGX_TCB_ISSUER_CHAIN
* OE_CLAIM_SGX_PCK_CRL
* OE_CLAIM_SGX_ROOT_CA_CRL
* OE_CLAIM_SGX_CRL_ISSUER_CHAIN
* OE_CLAIM_SGX_QE_ID_INFO
* OE_CLAIM_SGX_QE_ID_ISSUER_CHAIN
* The attestation functions in local_attestation/remote_attestation/attested_tls/host_verify samples now use attestation plugin APIs, defined in attestation/attester.h and attestation/verifier.h to generate and verify evidence.
* oe_get_evidence() support for generation of SGX EPID evidences, in formats OE_FORMAT_UUID_SGX_EPID_LINKABLE and OE_FORMAT_UUID_SGX_EPID_UNLINKABLE.

Changed

* Rename the custom claims buffer added by oe_get_evidence from "custom_claims" to "custom_claims_buffer". Likewise, replace the OE_CLAIM_CUSTOM_CLAIMS definition for this name with OE_CLAIM_CUSTOM_CLAIMS_BUFFER.
* Building SDK from source
- HAS_QUOTE_PROVIDER cmake option has been removed. This is a continuation of the work in the previous release to allow the same build of OE SDK to run on both FLC and non-FLC machines.
- Intel SGX EnclaveCommonAPI packages are no longer needed to build the SDK.
- COMPILE_SYSTEM_EDL option has been removed.

* oe_verify_attestation_certificate_with_evidence() can now verify certificates generated by oe_generate_attestation_certificate() as well as oe_get_attestation_certificate_with_evidence().
* The SGX attestation evidence internal structure has changed. The current structure (version 3) is not compatible with the previous version. Applications that call oe_get_evidence() or oe_verify_evidence() have to be rebuilt.
* Some SGX attestation format IDs have been renamed:
Old
New
OE_FORMAT_UUID_SGX_ECDSA_P256
OE_FORMAT_UUID_SGX_ECDSA
OE_FORMAT_UUID_SGX_ECDSA_P256_REPORT
OE_FORMAT_UUID_LEGACY_REPORT_REMOTE
OE_FORMAT_UUID_SGX_ECDSA_P256_QUOTE
OE_FORMAT_UUID_RAW_SGX_QUOTE_ECDSA
Removed

* Declaration of SGX format ID OE_FORMAT_UUID_SGX_ECDSA_P384 is removed.

* oe_get_evidence() support of SGX legacy formats OE_FORMAT_UUID_SGX_ECDSA_P256_REPORT and OE_FORMAT_UUID_SGX_ECDSA_P256_QUOTE is removed.

Security

* Update mbedTLS to version 2.16.7. Refer to the 2.16.7 release notes<https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.7> for the set of
issues addressed.
Thanks,
Rahdika


Open Enclave SDK SIG-Attestation Meeting Series - Wed, 09/02/2020 #cal-notice

oesdk@lists.confidentialcomputing.io Calendar <noreply@...>
 

Open Enclave SDK SIG-Attestation Meeting Series

When:
Wednesday, 2 September 2020
10:00am to 11:00am
(GMT-07:00) America/Los Angeles

Where:
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

Organizer:
radhikaj@...

Description:
Please join us for technical discussions related Attestation in the Open Enclave SDK.

Join Zoom Meeting
https://zoom.us/j/99552932630?pwd=d1NCR2FkS2gwY0w3Wm9aK096cXZzUT09

 

Agenda and Minutes:  https://hackmd.io/Xj6GpDSKSwuz5cZgQ0yg1A

Meeting ID: 995 5293 2630
Password: 010209
One tap mobile
+12532158782,,99552932630#,,1#,010209# US (Tacoma)
+13462487799,,99552932630#,,1#,010209# US (Houston)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 346 248 7799 US (Houston)
        +1 669 900 6833 US (San Jose)
        +1 312 626 6799 US (Chicago)
        +1 929 205 6099 US (New York)
        +1 301 715 8592 US (Germantown)
        877 853 5247 US Toll-free
        888 788 0099 US Toll-free
Meeting ID: 995 5293 2630
Password: 010209
Find your local number: https://zoom.us/u/au4r6sLy7

141 - 160 of 227