This PR proposes improvements to the TEE verification process to strengthen validation and improve test coverage.
Overview
The goal of these pr is to review and potentially enhance the current verification flow used when downloading and validating TEE elements. This includes improvements to signature verification, key validation, and test coverage.
Checklist
This PR proposes improvements to the TEE verification process to strengthen validation and improve test coverage.
Overview
The goal of these pr is to review and potentially enhance the current verification flow used when downloading and validating TEE elements. This includes improvements to signature verification, key validation, and test coverage.
Checklist
Investigate possible improvements to SkipVerification during the download of TEE elements. The goal is to check for any possible improvements. @kylexqian (related comment)
Validate the public key hash in the precompile (link)
Review the implementation of verifyCOSESignatureES384
we should cross-test it with AWS's reference verifier or replace it with a library like go-cose or fxamacker/cose. (link)