tee: Add instructions for configuring DCAP on IBM Cloud #1047
Conversation
✅ Deploy Preview for oasisprotocol-docs ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
docs/node/run-your-node/prerequisites/set-up-trusted-execution-environment-tee.md
Show resolved
Hide resolved
Didn't we confirm that currently SGX DCAP attestation on IBM VMs does not work? It supposedly works only on IBM bare-metal instances, but did we confirm this? If yes, I would expect that this PR adds a note to the list of cloud providers that only bare-metal instances work. |
Not entirely, the IBM Cloud team confirmed it works on their side, and stated the two tools ( Also, this part of the docs never explicitly states that SGX works with IBM Cloud VMs, but just provides links to configure PCCS according to the docs. If we ever want to state that it works only for bare-metal, we should probably do it inside some support metrics (e.g., in https://docs.oasis.io/node/run-your-node/prerequisites/cloud-providers#known-providers where we already have a table with known providers). |
As far as I know we developed the
True, but adding these instructions for IBM Cloud and not mentioning where exactly is this supposed to work, you are implicitly suggesting it works on all IBM Cloud instances. Lets wait until we actually confirmed it works. |
anzoman
force-pushed
the
anzoman/document-setting-up-tee-for-ibm-cloud
branch
from
4ce4ae9 to
9170cc8
Compare
|
After performing an internal test of running an Oasis client node for Testnet with Sapphire ParaTime, we confirmed that running production enclaves works on the IBM Cloud Virtual Servers for VPC. The fortanix/rust-sgx#565 issue causing |
anzoman
force-pushed
the
anzoman/document-setting-up-tee-for-ibm-cloud
branch
from
9170cc8 to
4050d66
Compare
After testing the SGX support on IBM Cloud we are adding the instructions for configuring DCAP on IBM Cloud.