Methods

Understand about the various types of attestation methods and the use cases.

Note: Currently, there is no industry standard for remote attestation protocols. As a result, CPU vendors and Cloud Service Providers have each developed their own proprietary solutions.

The right attestation method depends entirely on what you need to prove. This section breaks down the most common approaches, helping you select the best one for your specific security goals and use cases.

Method

Scope of Verification

Description

Initial Firmware/CPU State

A low-level measurement from the CPU vendor's hardware.

Boot Chain

Verifies the bootloader and kernel against known measurements.

Runtime Environment

Measures applications, libraries, and configuration after the OS has booted.

Paravirtualized TPM

Runtime Environment

An interoperable alternative to a vTPM that uses standard drivers.

Last updated 1 day ago

Was this helpful?