attested-workload
in-tee runtime
a workload inside the tee, served over attested tls
runs an http service inside a cloud tee, proves what code is running with a hardware quote, and serves it over attested tls where the certificate spki is bound into the quote. one engine for aws nitro, amd sev-snp, and intel tdx.
$ attested-workload
$ aw run ./app $ aw check https://<host>/ ok · platform measurement · value x · tls spki bound into quote
live mesh
the attested-TLS pattern here — bind sha256(cert_spki || X) into the hardware quote, no ca needed — is live across aws sev-snp, aws nitro, and azure sev-snp. the azure node serves the layer above over attested-TLS at attest.secure.build and closes a source → silicon loop (in-tee build digest bound as value_x).
re-verify any node yourself: unified-quote/live
the stack
- authorizationeat-pass
- agent platformcvm-agent
- attestation serviceattestation-service
- quote formatunified-quote
- in-tee runtimeattested-workload (here)
agentic canon
no proof, no privilege.
make behavior enforceable · turn failures into evolution · compose through proofs · carry trust forward.
make behavior enforceable · turn failures into evolution · compose through proofs · carry trust forward.