Readme

ameba23 · ameba23 · commit 4f0cf97000e8 · 2025-11-05T10:02:24.000+01:00
diff --git a/README.md b/README.md
@@ -0,0 +1,15 @@
+
+# `attested-tls-proxy`
+
+This is a work-in-progress crate designed to be an alternative to [`cvm-reverse-proxy`](https://github.com/flashbots/cvm-reverse-proxy).
+
+It offers two components:
+- a proxy server, which accepts TLS connections from a proxy client, sends an attestation and then forwards traffic to a target CVM service.
+- a proxy client, which accepts connections from elsewhere, connects to and verifies the attestation from the proxy server, and then forwards traffic to it over TLS.
+
+Unlike `cvm-reverse-proxy`, this uses post-handshake remote-attested TLS, meaning regular CA-signed TLS certificates can be used.
+
+However attestation generation and verification is not yet implemented - there is a trait provided and mock attestation for testing purposes.
+
+This shares some code with [ameba23/attested-channels](https://github.com/ameba23/attested-channels) and may eventually be merged with that crate.
+
