Intel® Security Libraries for Data Center (Intel® SecL-DC) enables security use cases for data center using Intel® hardware security technologies.
Hardware-based cloud security solutions provide a higher level of protection as compared to software-only security measures. There are many Intel platform security technologies, which can be used to secure customers' data. Customers have found adopting and deploying these technologies at a broad scale challenging, due to the lack of solution integration and deployment tools. Intel® Security Libraries for Data Centers (Intel® SecL - DC) was built to aid our customers in adopting and deploying Intel Security features, rooted in silicon, at scale.
Intel® SecL-DC is an open-source remote attestation implementation comprising a set of building blocks that utilize Intel Security features to discover, attest, and enable critical foundation security and confidential computing use-cases. It applies the remote attestation fundamentals and standard specifications to maintain a platform data collection service, and an efficient verification engine to perform comprehensive trust evaluations. These trust evaluations can be used to govern different trust and security policies applied to any given workload.
For more details please visit : https://01.org/intel-secl
The below diagram depicts the high level architecture of the Intel®SecL-DC,
Intel® SecL-DC is provided as reference code and is also extensible to include any future security use cases and technologies. To build components necessary to try out different use cases, please follow instructions here,
https://github.com/intel-secl/build-manifest/
It makes use of repo tool which simplifies efforts to clone and build multiple repos. To build latest v4.0.0 version of Intel® SecL-DC with a single instruction:
# repo init -U <build-repo-url> -b <release-tag> -m <usecasemanifest>
example:
# repo init -u https://github.com/intel-secl/build-manifest.git -b refs/tags/v4.0.0 -m manifest/fs.xmlFor more details on the product, installation and deployment strategies, please go through following, (Refer to latest and use case wise guide)
https://01.org/intel-secl/documentation/intel%C2%AE-secl-dc-product-guide
https://01.org/intel-secl/documentation/intel%C2%AE-secl-dc-release-notes
Feel free to raise build, deploy or even runtime issues here,
https://github.com/intel-secl/intel-secl/issues
NOTE: Instructions specific to build components only in monorepo