Assignment 7 sgximpl: README update

This commit is contained in:
chronal 2024-07-07 22:37:40 +02:00
parent 2fd8f87432
commit 1e1095baa0
Signed by: chronal
GPG key ID: 25400F3DAABF602F

View file

@ -1,6 +1,10 @@
# Signature Relay for firmware # Signature Relay for firmware
Documentation of Documentation of the Assignment 7 in Systems Security at Ruhr-Universität Bochum.
This is a program, that uses a TEE to build a signature relay to sign firmware with a master key.
For more informationm, read the [project description](doc/abgabe.pdf).
We recommend viewing the [repository](https://git.pfzetto.de/RubNoobs/Systemsicherheit/src/branch/Assignment-7-sgximpl/7-SGX_Hands-on) we worked on together at.
## Compiling ## Compiling
@ -42,3 +46,14 @@ Initialize the Enclave keypair by executing:
The enclave verifies the employee signature and signs the firmware if the signature is valid. The enclave verifies the employee signature and signs the firmware if the signature is valid.
3. Verify signature using `cat <proxy_signature.der> | ./signatureproxy embedded -firm <firmware.bin> -ppub <proxy_public_key.pem>` 3. Verify signature using `cat <proxy_signature.der> | ./signatureproxy embedded -firm <firmware.bin> -ppub <proxy_public_key.pem>`
This step can also be done using OpenSSL: `openssl dgst -sha256 -verify <proxy_public_key.pem> -signature <proxy-signature.der> <firmware.bin>` This step can also be done using OpenSSL: `openssl dgst -sha256 -verify <proxy_public_key.pem> -signature <proxy-signature.der> <firmware.bin>`
## License
Everything we did ourselves is licensed under the [GNU GPLv3 License](./LICENSE)
## Contributors
- Benjamin Haschka
- Sascha Tommasone
- Paul Zinselmeyer