Standardization and Open-source Implementation of Attested TLS for Confidential Computing

Name: Standardization and Open-source Implementation of Attested TLS for Confidential Computing
Start: 2026-01-31T12:05:00
End: 2026-01-31T12:05:00
Location: UD6.215

UD6.215 | Day 2 | 12:05 - 12:25 | Speakers: Muhammad Usama Sardar, peg

Copy link

Copy link

Open in browser

Notes

Abstract

Summary

Attested TLS is a fundamental building block of confidential computing. We have defended our position (cf. expat BoF) to standardize the attested TLS protocols for confidential computing in the IETF, and a new Working Group named Secure Evidence and Attestation Transport (SEAT) has been formed to exclusively tackle this specific problem. In this talk, we present the design choices for standardization of attested TLS, namely pre-handshake attestation, intra-handshake attestation, and post-handshake attestation. We present the journey of standardization effort showing replay, diversion and relay attacks on pre-handshake attestation and intra-handshake attestation (see paper and formal proof). We finally present the post-handshake attestation candidate draft for standardization to gather feedback from the community, so that it can be accommodated in the standardization.

Technical details

We propose a specification that defines a method for two parties in a communication interaction to exchange Evidence and Attestation Results using exported authenticators, as defined in RFC9261. Additionally, we introduce the cmw_attestation extension, which allows attestation credentials to be included directly in the Certificate message sent during the Exported Authenticator-based post-handshake authentication. The approach supports both the passport and background check models from the RATS architecture while ensuring that attestation remains bound to the underlying communication channel.

WiP Implementation

WiP Implementation uses the veraison/rust-cmw implementation of RATS conceptual messages wrapper. It includes a test which demonstrates using it with QUIC (for transport) and Intel TDX (as confidential compute platform): tests/quic_tdx.rs.

Useful links

IETF SEAT WG: https://datatracker.ietf.org/wg/seat/about/
Subscribe to SEAT WG mailing list: https://mailman3.ietf.org/mailman3/lists/seat.ietf.org/
Spec: https://datatracker.ietf.org/doc/draft-fossati-seat-expat/
Proposed for adoption at CCC Attestation SIG: https://github.com/CCC-Attestation/governance/issues/20

Attachments

Slides

Speakers

Muhammad Usama Sardar

Muhammad Usama Sardar has been working at TU Dresden since October 2017. He also serves as the co-chair of the Trusted Research Environment (TRE) Open Suite in The Global Alliance for Genomics and Health. He led the completed TEE formal specification project and currently leads the Key Broker Service (KBS) formal verification project in Confidential Computing Consortium (CCC) Attestation Special Interest Group (SIG).

He also contributes to various research networks, such as EuroProofNet (WG3), Méthodes formelles pour la sécurité, Internet Research Task Force (IRTF) Usable Formal Methods Research Group (UFMRG), as well as engineering networks, such as Internet Engineering Task Force (IETF) Remote ATtestation procedureS (RATS), Transport Layer Security (TLS), Secure Evidence and Attestation Transport (SEAT), and Workload Identity in Multi System Environments (WIMSE) working groups.

peg

Rust developer with a passion for confidential computing and peer-to-peer networking

External Links

Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.