Azure Container Instances
An Azure service that provides customers with a serverless container experience.
750 questions
For Confidential Containers on ACI, what key is AMD SEV/SNP attestation ID_KEY_DIGEST the SHA384 of?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 95%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
Gram
0
Reputation points
When a container is run via ACI's confidential VMs, a key is used as part of SNP_LAUNCH_FINISH to sign the measurement and policy. A digest of that key is put into ID_KEY_DIGEST and is accessible by requesting a SNP attestation report via /dev/sev-guest from within the confidential VM. At last look, this key digest is
ebeeeabce075eeaba3d9ea24d8495137a2877c0d20ac6ea73fc6d2f8aeb50de132150e0a0752664919bcebbf2e8c5807
Is this key accessible to clients, and is there a certificate chain from this key up to a long-lived Microsoft-controlled root key?
Azure Container Instances
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,243 questions
{count} votes
-
Prrudram-MSFT 28,156 Reputation points2023-08-07T08:47:43.5233333+00:00 Hello @Gram
The key digest is accessible by requesting a SNP attestation report via /dev/sev-guest from within the confidential VM<sup>.</sup> There is no information available in the documents about whether this key is accessible to clients or if there is a certificate chain from this key up to a long-lived Microsoft-controlled root key.
I recommend reaching out to azure technical supportI. If you don't have the ability to open a technical support ticket, please let me know and I can help you further with this.
Sign in to comment
Sign in to answer