You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/attestation/claim-sets.md
+13-13Lines changed: 13 additions & 13 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -12,15 +12,15 @@ ms.author: mbaldwin
12
12
---
13
13
# Claim sets
14
14
15
-
Claims generated in the process of attesting enclaves using Microsoft Azure Attestation can be divided into the below categories:
15
+
Claims generated in the process of attesting enclaves using Microsoft Azure Attestation can be divided into these categories:
16
16
17
17
-**Incoming claims**: The claims generated by Microsoft Azure Attestation after parsing the attestation evidence and can be used by policy authors to define authorization rules in a custom policy
18
18
19
19
-**Outgoing claims**: The claims generated by Azure Attestation and included in the attestation token
20
20
21
21
-**Property claims**: The claims created as an output by Azure Attestation. It contains all the claims that represent properties of the attestation token, such as encoding of the report, validity duration of the report, and so on.
22
22
23
-
## Incoming claims
23
+
## Incoming claims
24
24
25
25
### SGX attestation
26
26
@@ -42,7 +42,7 @@ Claims to be used by policy authors to define authorization rules in an SGX atte
42
42
43
43
When an enclave author prefers to rotate MRSIGNER for security reasons, Azure Attestation policy must be updated to support the new and old MRSIGNER values before the binaries are updated. Otherwise authorization checks will fail resulting in attestation failures.
44
44
45
-
Attestation policy must be updated using the below format.
45
+
Attestation policy must be updated using the format below.
46
46
47
47
#### Before key rotation
48
48
@@ -87,10 +87,10 @@ Claims to be used by policy authors to define authorization rules in an SGX atte
87
87
88
88
The enclave author assigns a Security Version Number (SVN) to each version of the SGX enclave. When a security issue is discovered in the enclave code, enclave author increments the SVN value post vulnerability fix. To prevent interacting with insecure enclave code, customers can add a validation rule in the attestation policy. If the SVN of the enclave code does not match the version recommended by the enclave author, attestation will fail.
89
89
90
-
Below claims are considered deprecated but are fully supported and will continue to be included in the future. It is recommended to use the non-deprecated claim names.
90
+
These claims are considered deprecated but are fully supported and will continue to be included in the future. It is recommended to use the non-deprecated claim names:
91
91
92
92
Deprecated claim | Recommended claim
93
-
--- | ---
93
+
--- | ---|
94
94
$is-debuggable | x-ms-sgx-is-debuggable
95
95
$product-id | x-ms-sgx-product-id
96
96
$sgx-mrsigner | x-ms-sgx-mrsigner
@@ -114,7 +114,7 @@ Claims to be used by policy authors to define authorization rules in a TPM attes
114
114
115
115
### VBS attestation
116
116
117
-
In addition to the TPM attestation policy claims, below claims can be used by policy authors to define authorization rules in a VBS attestation policy.
117
+
In addition to the TPM attestation policy claims, these claims can be used by policy authors to define authorization rules in a VBS attestation policy:
118
118
119
119
- **enclaveAuthorId**: String value containing the Base64Url encoded value of the enclave author id-The author identifier of the primary module for the enclave
120
120
- **enclaveImageId**: String value containing the Base64Url encoded value of the enclave Image id-The image identifier of the primary module for the enclave
@@ -124,11 +124,11 @@ In addition to the TPM attestation policy claims, below claims can be used by po
124
124
- **enclavePlatformSvn**: Integer value containing the security version number of the platform that hosts the enclave
125
125
- **enclaveFlags**: The enclaveFlags claim is an Integer value containing Flags that describe the runtime policy for the enclave
126
126
127
-
## Outgoing claims
127
+
## Outgoing claims
128
128
129
129
### Common for all attestation types
130
130
131
-
Azure Attestation includes the below claims in the attestation token for all attestation types.
131
+
Azure Attestation includes these claims in the attestation token for all attestation types:
132
132
133
133
- **x-ms-ver**: JWT schema version (expected to be "1.0")
134
134
- **x-ms-attestation-type**: String value representing attestation type
@@ -145,7 +145,7 @@ Below claim names are used from [IETF JWT specification](https://tools.ietf.org/
145
145
- **"exp" (Expiration Time) Claim** - Expiration time after which the JWT must not be accepted for processing
146
146
- **"nbf" (Not Before) Claim** - Not Before time before which the JWT must not be accepted for processing
147
147
148
-
Below claim names are used from [IETF EAT draft specification](https://tools.ietf.org/html/draft-ietf-rats-eat-03#page-9)
148
+
These claim names are used from [IETF EAT draft specification](https://tools.ietf.org/html/draft-ietf-rats-eat-03#page-9):
149
149
150
150
- **"Nonce claim" (nonce)** - An untransformed direct copy of an optional nonce value provided by a client
151
151
@@ -162,7 +162,7 @@ rp_data | nonce
162
162
163
163
### SGX attestation
164
164
165
-
Below claims are generated and included in the attestation token by the service for SGX attestation.
165
+
These caims are generated and included in the attestation token by the service for SGX attestation:
166
166
167
167
- **x-ms-sgx-is-debuggable**: A Boolean, which indicates whether or not the enclave has debugging enabled or not
168
168
- **x-ms-sgx-product-id**: Product ID value of the SGX enclave
@@ -180,17 +180,17 @@ Below claims are generated and included in the attestation token by the service
180
180
- **tcbinfohash**: SHA256 value of the TCB Info collateral
181
181
- **x-ms-sgx-report-data**: SGX enclave report data field (usually SHA256 hash of x-ms-sgx-ehd)
182
182
183
-
Below claims will appear only in the attestation token generated for Intel® Xeon® Scalable processor-based server platforms. The claims will not appear if the SGX enclave is not configured with [Key Separation and Sharing Support](https://github.com/openenclave/openenclave/issues/3054). The claim definitions can be found [here](https://github.com/openenclave/openenclave/issues/3054)
183
+
These claims will appear only in the attestation token generated for Intel® Xeon® Scalable processor-based server platforms. The claims will not appear if the SGX enclave is not configured with [Key Separation and Sharing Support](https://github.com/openenclave/openenclave/issues/3054). The claim definitions can be found [here](https://github.com/openenclave/openenclave/issues/3054):
184
184
185
185
- **x-ms-sgx-config-id**
186
186
- **x-ms-sgx-config-svn**
187
187
- **x-ms-sgx-isv-extended-product-id**
188
188
- **x-ms-sgx-isv-family-id**
189
189
190
-
Below claims are considered deprecated but are fully supported and will continue to be included in the future. It is recommended to use the non-deprecated claim names.
190
+
These claims are considered deprecated, but are fully supported and will continue to be included in the future. It is recommended to use the non-deprecated claim names:
0 commit comments