tee: Add instructions for configuring DCAP on IBM Cloud #1047
Conversation
✅ Deploy Preview for oasisprotocol-docs ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
| @@ -161,12 +161,16 @@ Some cloud providers require you to use their PCCS. | |||
| - Alibaba Cloud: See the [Alibaba Cloud documentation] for details on configuring the quote provider. The | |||
| documentation shows the required `sgx_default_qcnl.conf` changes. | |||
|
|
|||
| - IBM Cloud: See the [IBM Cloud documentation] for details on configuring the quote provider. The | |||
There was a problem hiding this comment.
This is just for the VM instances, right?
I assume the bare metal instances don't need these changes to the config.
There was a problem hiding this comment.
Yes, just the VMs, for the bare-metal it works out of the box.
Didn't we confirm that currently SGX DCAP attestation on IBM VMs does not work? It supposedly works only on IBM bare-metal instances, but did we confirm this? If yes, I would expect that this PR adds a note to the list of cloud providers that only bare-metal instances work. |
Not entirely, the IBM Cloud team confirmed it works on their side, and stated the two tools ( Also, this part of the docs never explicitly states that SGX works with IBM Cloud VMs, but just provides links to configure PCCS according to the docs. If we ever want to state that it works only for bare-metal, we should probably do it inside some support metrics (e.g., in https://docs.oasis.io/node/run-your-node/prerequisites/cloud-providers#known-providers where we already have a table with known providers). |
As far as I know we developed the
True, but adding these instructions for IBM Cloud and not mentioning where exactly is this supposed to work, you are implicitly suggesting it works on all IBM Cloud instances. Lets wait until we actually confirmed it works. |
After testing the SGX support on IBM Cloud we are adding the instructions for configuring DCAP on IBM Cloud.