· 17 January 2025 ·
Intel® Trust Authority Client for C provides a set of C libraries for attesting different TEEs with Intel Trust Authority. Users can link the C libraries within their application to collect evidence for attestation, request an attestation token from Intel Trust Authority, and perform other functions.
The Client for C comprises a main library that encapsulates the Intel Trust Authority REST API, called the connector, and a collection of platform adapters. Adapters handle the low-level functionality needed to collect evidence for attestation from a TEE or platform.
The C connector can be used alone by a relying party, for example, to validate a token, or to request a token in Background-Check mode using evidence collected by the attester. The connector, used alone, does not need to run in a TEE and it doesn't need an adapter.
Attesting parties require both the connector and one or more adapters. Attesters can operate in either Passport or Background-Check mode. The Client for C can also be used to collect measurements from a reference configuration for use in appraisal policies.
Currently, the following platforms are supported in General Availability status:
- Intel® Software Guard Extensions (Intel® SGX) enclaves use the Intel SGX adapter.
- Intel® Trust Domain Extensions (Intel® TDX). There are two adapters for Intel TDX:
For more information about client integration with Intel Trust Authority, see the primary online documentation.
The Client for C now includes pre-release ("beta") adapters for the following platforms. Details of implementation and usage may change before general availability.
- Google Cloud Platform (GCP) confidential VMs with Intel TDX.
- NVIDIA H100* GPU and Intel TDX.
- Support for TPMs and Azure vTPM.
- AMD SEV-SNP* on Azure and GCP.
AMD SEV-SNP is supported in limited preview status in the pilot environment only. For preview access, please contact your Intel sales representative.
New example applications were added for the pre-release adapters, and existing examples for Intel SGX and Intel TDX were updated to work with the latest adapter version.
Use Ubuntu 20.04 or later for most adapters. The NVGPU adapter requires Ubuntu 24.04.
Some platforms have additional requirements; see the adapter's README for details.
Follow the build instructions of library from builds.md
Installation steps:
- Copy the libraries built from above steps to application path and export them to LD_LIBRARY_PATH.
- LD_LIBRARY_PATH=$LD_LIBRARY_PATH:
- export LD_LIBRARY_PATH
For details of building and running the unit tests, see the Unit test build instructions.
This library is distributed under the BSD-style license found in the LICENSE file.
Contributions to this project are welcome. For more information, see Contributing. This project has a Code of Conduct for contributors.
* Other names and brands may be claimed as the property of others.