Alternatives
The Anjuna Policy Manager (APM) provides a streamlined experience for performing remote attestation of secure enclaves, fetching arbitrary secrets protected by attestation-aware policies, and injecting those secrets into the application.
Other alternatives do exist for verifying attestation and delivering secrets. For example, by configuring Microsoft Azure Attestation for use with Azure Key Vault, you can limit access to encryption keys using the Secure Key Release process. Then, you can write client code to fetch and use those encryption keys within your application. Similarly, Veraison is an open-source project for attestation verification, and you can integrate the Veraison components into your own secret store and client code.
The Anjuna Policy Manager provides a simple and direct path
for granting enclaves access to secrets,
with a faster time to value and lower integration effort than the alternatives.
For use cases that are not a good fit for the Anjuna Policy Manager,
Anjuna provides interoperable interfaces like the Anjuna SGX Runtime’s quote_generate
.
Contact support@anjuna.io for guidance and feature requests for the Anjuna Policy Manager.