Richard Fan
Richard Fan
This is related to a known issue that JSON cannot have numeric key in an object And CyberChef expect the CBOR decode result to be a JSON https://github.com/gchq/CyberChef/blob/a3b873fd96111fe2dbcb62a1e037987669290a13/src/core/operations/CBORDecode.mjs#L26 https://github.com/hildjj/node-cbor/issues/42#issuecomment-264544977
I disable the soting function in order to prevent user from reordering records accidentally. If you really want some column to be sortable, you can explicitly configure the enableSorting setting...
Are you running the enclave in debug mode? If so, the image digest is always `000000000000000000000000000000000000000000000000`
The tool can only be used inside the enclave
Hi @stibala @florianpreusner First of all, `kmstool_enclave_cli` can only run in the enclave, if you try to run outside the enclave, it will fail. Second, the exec format error is...
@florianpreusner Thanks for your action. I didn't foresee a wide-range usage when I was building the CLI 3 years ago, so I didn't take different CPU architectures into account. I...
I had written similar code in Python for this purpose: https://github.com/richardfan1126/nitro-enclave-python-demo/blob/master/attestation_verifier/secretstore/attestation_verifier.py Given that verifying attestation documents is mostly the task of an external component which doesn't directly work with NSM,...
Why not just set the found identity info as the workflow output, and let the caller actions do whatever they want on it? I've made such changes and did a...
Hi @edwardysun The KMS encrypt action doesn't support attestation document. So we cannot implement it https://docs.aws.amazon.com/enclaves/latest/user/kms.html
> I see. Would an alternate approach like this be valid? > > 1. Generate a data key (using kmstool's genkey) - creating (Plaintext, Ciphertext) pair > 2. Encrypt the...