Skip to content

Commit e37d2ce

Browse files
19BMG0019BMG00
authored
Merge pull request #216839 from mssindhurid/main
Update faq.yml
2 parents 09b668b + def9c66 commit e37d2ce

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

articles/attestation/faq.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -21,12 +21,12 @@ sections:
2121
- question: |
2222
What is Trusted Hardware Identity Management (THIM) and its role in enclave attestation
2323
answer: |
24-
Trusted Hardware Identity Management (THIM) defines the Azure security baseline for the [Azure Confidential computing (ACC)](../confidential-computing/overview.md) nodes from Intel and caches the data. The cached information will be further used by Azure Attestation in validating Trusted Execution Environments (TEEs).
24+
Trusted Hardware Identity Management (THIM) fetches the Azure security baseline for the [Azure Confidential computing (ACC)](../confidential-computing/overview.md) nodes from Intel and caches the data. The cached information will be further used by Azure Attestation in validating Trusted Execution Environments (TEEs).
2525
2626
THIM is recommended for the following reasons:
2727
- Offers high availability
2828
- Reduces dependencies on externally hosted services and internet connectivity.
29-
- Fetches the latest versions of Intel certificates, CRLs, Trusted Computing Base (TCB) information and Quoting Enclave identity of the ACC nodes from Intel. The service hence confirms the Azure security baseline to be referred by Azure Attestation while validating the TEEs, greatly reducing attestation failures due to invalidation or revocation of Intel certificates
29+
- Periodically fetches the newer versions of Intel certificates, CRLs, Trusted Computing Base (TCB) information and Quoting Enclave identity of the ACC nodes from Intel. The service hence confirms the Azure security baseline to be referred by Azure Attestation while validating the TEEs, greatly reducing attestation failures due to invalidation or revocation of Intel certificates
3030
3131
- question: |
3232
Is SGX attestation supported by Azure Attestation in non-Azure environments

0 commit comments

Comments
 (0)