diff --git a/repo-guide.md b/repo-guide.md index 68414c1..e18069c 100644 --- a/repo-guide.md +++ b/repo-guide.md @@ -20,7 +20,7 @@ Compilation of documentation for various Veraison projects into a reader-friendl Veraison community files. Look here for introductory presentations to the project and CCC membership materials. [veraison.github.io](https://github.com/veraison/veraison.github.io) -Currently a placeholder for veraison-project.org. +Veraison project web site. ## Client Libraries Veraison services expose REST APIs. This set of libraries provides convenient code abstractions for the API model, to be used in client verification and provisioning applications. @@ -45,12 +45,19 @@ Rust implementation of the Arm Confidential Computing Architecture (CCA) Attesta [parsec](https://github.com/veraison/parsec): Library support for handling the Parsec Key Attestation formats used in the attested TLS PoC. +[ccaguest](https://github.com/veraison/ccaguest) +A feature-rich tool for exploring CCA attestation. + +[rust-regl](https://github.com/veraison/rust-regl) +Evidence generation library in Rust. + ## Demos and Integration Examples [enact-demo](https://github.com/veraison/enact-demo): EnactTrust TPM/Veraison interop demo and related docs [keybroker-demo](https://github.com/veraison/keybroker-demo): A simple key broker protocol demonstration +[cca-coserv-demo](https://github.com/veraison/cca-coserv-demo): CoSERV & Arm CCA end-to-end demo ## CLI tools CLI tools for illustrative interactions with attestation tokens or a Veraison service. Used for demos & integration testing. @@ -70,6 +77,18 @@ Test case generator for CoRIM-related testing and validation [cca-realm-measurements](https://github.com/veraison/cca-realm-measurements) A tool to calculate Realm Initial Measurements and Realm Extended Measurements for Arm CCA +[cocli](https://github.com/veraison/cocli) +CLI tool to manipulate CoRIM and CoMIDs + +[corim-tool](https://github.com/veraison/corim-tool) +A CLI for working with CoRIMs based on corim-rs. + +[cover](https://github.com/veraison/cover) +CoRIM Verifier + +[go-gen-ref](https://github.com/veraison/go-gen-ref) +Tool to generate reference values for the SEV-SNP scheme + ## Standards driven work The Veraison Project supports Attestation related working groups in standards bodies, in particular IETF & TCG. This set of repos provide test bed implementations for some of the standards work, as related to Veraison services. @@ -77,6 +96,9 @@ The Veraison Project supports Attestation related working groups in standards bo [eat](https://github.com/veraison/eat) Golang library for manipulating Entity Attestation Tokens (draft-ietf-rats-eat). +[da](https://github.com/veraison/da) +Golang implementation of draft-poirier-rats-eat-da. + #### EAR These libraries provide functions for working with EAR (EAT Attestation Results), an EAT/JWT serialisation of the Attestation Result for Secure Interactions (AR4SI) information model - see draft-fv-rats-ear @@ -91,13 +113,17 @@ These libraries provide functions for working with EAR (EAT Attestation Results) [ratsd](https://github.com/veraison/ratsd): A RATS conceptual message collection daemon +[coserv-rs](https://github.com/veraison/coserv-rs): Rust implementation of CoSERV data types and API bindings + #### Verifier Provisioning These libraries provide support for the standard information models used to convey data to a Verifier. -[corim](https://github.com/veraison/corim): manipulation of Concise Reference Integrity Manifest (CoRIM) and Concise Module Identifier (CoMID) tags. Also includes cocli CLI tool, that assists users creating CoRIM & CoMID tags. +[corim](https://github.com/veraison/corim): manipulation of Concise Reference Integrity Manifest (CoRIM) and Concise Module Identifier (CoMID) tags. [corim-rs](https://github.com/veraison/corim-rs): Rust implementation of CoRIM and CoMID manipulation library +[corim-store](https://github.com/veraison/corim-store): An endorsement store based on CoRIM, implemented on top of a relational DBMS. + [swid](https://github.com/veraison/swid) : SWID and CoSWID manipulation library #### COSE @@ -110,7 +136,7 @@ flowchart TD VR("Veraison Roles") style VR fill:#f9f,stroke:#333,stroke-width:4px LG["Logical Group \n Repository name"] -subgraph Daigram[Daigram Convention] +subgraph Diagram[Diagram Convention] VR -->| Direct Usage | LG VR -.-> | Possible Usage | LG @@ -121,7 +147,7 @@ end ```mermaid flowchart TD -subgraph Veraison["Core Structure Core Structure "] style Veraison stroke:#333,stroke-width:4px SP("Supply Chain") @@ -133,28 +159,40 @@ style ATT fill:#f9f,stroke:#333,stroke-width:4px COCLI["Endorsement Manipulation CLI Tool cocli"] -GEN-CORIM["Endorsement creation from Evidence CLI Tool +GENCORIM["Endorsement creation from Evidence CLI Tool gen-corim"] +GENREF["Reference Value Generation Tool + go-gen-ref"] + VPF["Verifier Provisioning Formats corim corim-rs - coswid"] + swid + coserv-rs"] COCLI ---> VPF +GENCORIM ---> VPF +GENREF ---> VPF CL["Common Libraries go-cose"] VPF ---> CL +ESTORE["Endorsement Stores + corim-store + "] +ESTORE ---> VPF + EF["Evidence Formats dice eat psatoken ccatoken rust-ccatoken - enacttrust-tpm - parsec (tpm, cca)"] + parsec (tpm) + rust-regl + da"] EF ---> CL SD["Core Verifier repositories @@ -183,10 +221,13 @@ Verifier ---> AR Verifier ---> VPF +Verifier ---> ESTORE Verifier ---> CL Verifier ---> EF SP ---> COCLI +SP ---> GENCORIM +SP ---> GENREF API["API CLIENT LIBRARIES apiclient @@ -197,12 +238,24 @@ SP -.-> API EVCLI["Evidence Manipulation CLI Tool \n evcli "] EVCLI ---> API +CCATOOLS["CCA Tools + ccaguest + cca-realm-measurements"] +CCATOOLS ---> EF + +CORIMTOOLS["CoRIM CLI Tools + corim-tool + cover"] +CORIMTOOLS ---> VPF + CMW["CONCEPTUAL MESSAGE WRAPPER cmw - rust-cmw"] + rust-cmw + coserv-rs"] ATT --->EF ATT -.-> EVCLI +ATT -.-> CCATOOLS EVCLI ---> EF API ---> CMW Verifier ---> CMW @@ -222,10 +275,24 @@ end ```mermaid flowchart TD VA[" + .github community + veraison veraison.github.io"] subgraph Veraison["Administrative Repositories"] VA end ``` + +```mermaid +flowchart TD +VD[" + cca-coserv-demo + enact-demo + keybroker-demo"] +subgraph Veraison["Demos and Integration Examples"] +VD +end + +```