Platform Guest Attestation App for Linux

Guest attestation is the process of cryptographically appraising a VM’s reported state, ensuring the reported security properties can be trusted and that they meet the requirements of a baseline attestation policy.

Example scenario

Build Instructions

Create a Linux Confidential or Trusted Launch virtual machine in Azure and clone the application.

Use the below command to install the build-essential package. This package will install everything required for compiling our sample application written in C++.

$ sudo apt-get install build-essential

Use the below commands to install libcurl4-openssl-dev and libjsoncpp-dev packages

$ sudo apt-get install libcurl4-openssl-dev
$ sudo apt-get install libjsoncpp-dev

Download the attestation package from the following location - https://packages.microsoft.com/repos/azurecore/pool/main/a/azguestattestation1/

Use the below command to install the attestation package

$ sudo dpkg -i azguestattestation1_1.0.0_amd64.deb

Once the above packages have been installed, use the below steps to build and run the app

$ cd attestation-app-linux/
$ cmake .
$ make
$ sudo ./AttestationClient

Steps to run sample client

1. Download sample-client.zip from the repo.

2. Unzip the folder.

3. Use the below commands to install libcurl4-openssl-dev and libjsoncpp-dev packages:

   $ sudo apt-get install libcurl4-openssl-dev
   $ sudo apt-get install libjsoncpp-dev

4. Download the attestation package from the following location - https://packages.microsoft.com/repos/azurecore/pool/main/a/azguestattestation1/

   Use the below command to install the attestation package:

   $ sudo dpkg -i azguestattestation1_1.0.0_amd64.deb

5. To run the sample client, navigate inside the unzipped folder and run the below command:

   $ sudo ./AttestationClient