Primitives for attested tls channels.
Provided crates:
attested-tls- WIP - provides attested TLS via X509 Certificate extensions and a custom certificate verifier.nested-tls- provides two TLS sessions, such that that outer session can be used for a CA signed certificate and the inner session for attestation.attestation- provides attestation generation, verification and measurement handling.
The included shell.nix file can be used with nix-shell, direnv, or nix develop to add the dependencies needed by the optional azure feature of the
attestation crate on Linux. See the
attestation crate readme for details.