These services support both Intel® Software Guard Extensions (Intel® SGX) and Intel® Trust Domain Extension (Intel® TDX) services in providing elements necessary to build an attestation service.
Intel® Provisioning Certification Service (Intel® PCS)
To take advantage of the security features of Intel® Xeon® Scalable processor-based server platforms, Intel offers Intel® Software Guard Extensions Data Center Attestation Primitives (Intel® SGX DCAP) and Intel® Trust Domain Extensions Data Center Attestation Primitives (Intel® TDX DCAP) as an open source project to help customers build their own Elliptic Curve Digital Signature Algorithm (ECDSA)-based attestation service. Intel also provides the provisioning certification service with APIs for retrieving provisioning certificates, revocation lists, trusted computing base (TCB) information, and enclave identity information for SGX and TDX enabled platforms.
The Intel® SGX Services and Intel® TDX Services Terms of Use govern use of these Services except where we expressly state that separate terms (and not these) apply. By using our services, you are agreeing to these terms. Make sure you read them carefully.
ECDSA attestation is currently supported on all Intel products with Intel® TDX, as well as a subset of products with Intel® SGX (details on this site).
Intel, the Intel logo and Xeon are trademarks of Intel Corporation or its subsidiaries.
Get PCK Certificate/s
PCK Certificate and CRL Specification
Two APIs that retrieve X.509 Provisioning Certification Key (PCK) certificates for a specific SGX-enabled platform. One API will retrieve the PCK certificate for a specified TCB level while the other will retrieve all certificates for all TCB levels listed in the current TCBInfo structure for the platform's family of processors. A subscription is required to utilize these APIs.
Get PCK Revocation Lists
PCK Certification and CRL Specification
Retrieve X.509 Certificate Revocation List (CRL) of all revoked PCK Certificates. CRL is issued either by Intel SGX Platform Certificate Authority (CA) or Intel SGX Processor CA.
Get SGX TCB Info
Retrieve SGX-specific TCB information for a given processor type.
Get Enclave Identity
Retrieve identity information for SGX Quoting Enclave, TDX Quoting Enclave, SGX Quote Verification Enclave and SGX Quote Appraisal Enclave issued by Intel.
Get TD TCB Mapping
Retrieve TD TCB Mapping information for TDX Quoting TD issued by Intel.
Get TDX TCB Info
Retrieve TDX-specific TCB information for a given processor type.
Get TD Identity
Retrieve Identity information for TDX Quoting TD issued by Intel
Get FMSPCs
Retrieve list of FMSPC values for SGX and TDX platforms supporting DCAP attestation.