Please check our google doc for detial information: Link to Development Document
Nginx + PHP + Intel SGX SDK 1.7 running on Ubuntu 14.04.5 LTS
Through PHP we communicate with Linux Server by socket. Our Client call this PHP via AJAX, and get json return. Due to the discontinue of the whole attestation process. whenever each client send a message to server. it should send its identification ID and the message type. So server can process it.
It used for exchange information between server and web client.
./sample -c ../../server_config.txt
Call path: start from index.html, the function are called sequently as below, and the functions are defined at remoteAttestation.js.
index.html -> receiveMSG1andProcess() -> deriveKeys() -> retreiveRL() -> generatAndSendMSG2() -> receiveMSG3andProcess() -> sendMSG4withFile() -> sendSamFile() -> sendRefFile() -> sendIndexFile()
bob_pfx.pfx is the file we submitted to Intel SGX IAS for get the SPID.
keys.txt file contains all the requried input for the Intel WebSGX attestation.
password file contains the passwrod for improting the certification to the computer when we want to communicate with IAS.
The left three files (RK_PUB.PEM, cert.pem, key.pem) are the different format key of the certification