Assignment-7-sgximpl #13
1 changed files with 16 additions and 1 deletions
|
@ -1,6 +1,10 @@
|
||||||
# Signature Relay for firmware
|
# Signature Relay for firmware
|
||||||
|
|
||||||
Documentation of
|
Documentation of the Assignment 7 in Systems Security at Ruhr-Universität Bochum.
|
||||||
|
This is a program, that uses a TEE to build a signature relay to sign firmware with a master key.
|
||||||
|
For more informationm, read the [project description](doc/abgabe.pdf).
|
||||||
|
|
||||||
|
We recommend viewing the [repository](https://git.pfzetto.de/RubNoobs/Systemsicherheit/src/branch/Assignment-7-sgximpl/7-SGX_Hands-on) we worked on together at.
|
||||||
|
|
||||||
## Compiling
|
## Compiling
|
||||||
|
|
||||||
|
@ -42,3 +46,14 @@ Initialize the Enclave keypair by executing:
|
||||||
The enclave verifies the employee signature and signs the firmware if the signature is valid.
|
The enclave verifies the employee signature and signs the firmware if the signature is valid.
|
||||||
3. Verify signature using `cat <proxy_signature.der> | ./signatureproxy embedded -firm <firmware.bin> -ppub <proxy_public_key.pem>`
|
3. Verify signature using `cat <proxy_signature.der> | ./signatureproxy embedded -firm <firmware.bin> -ppub <proxy_public_key.pem>`
|
||||||
This step can also be done using OpenSSL: `openssl dgst -sha256 -verify <proxy_public_key.pem> -signature <proxy-signature.der> <firmware.bin>`
|
This step can also be done using OpenSSL: `openssl dgst -sha256 -verify <proxy_public_key.pem> -signature <proxy-signature.der> <firmware.bin>`
|
||||||
|
|
||||||
|
|
||||||
|
## License
|
||||||
|
|
||||||
|
Everything we did ourselves is licensed under the [GNU GPLv3 License](./LICENSE)
|
||||||
|
|
||||||
|
## Contributors
|
||||||
|
|
||||||
|
- Benjamin Haschka
|
||||||
|
- Sascha Tommasone
|
||||||
|
- Paul Zinselmeyer
|
||||||
|
|
Loading…
Reference in a new issue