Sprockets provides a secure transport protocol for use in the Oxide bootstrap network. It is designed specifically to work with a Root of Trust (RoT) capable of providing device identities, signing capabilities, and a mechanism to retrieve measurements for remote attestation. The protocol utilizes TLS 1.3 via rustls for secure session establishment between bootstrap agents with authentication provided by local RoTs. Remote attestation is performed over secure TLS 1.3 channels.
Test cases rely on a PKI that we define in tls/test-keys/config.kdl. Before
cargo test will execute tests as expected the test PKI must be generated
using the pki-playground tool. This is automated by tls/build.rs.
After the TLS handshake is complete, the peers on either end of the connection exchange, verify, and appraise attestations generated by their respective RoTs. The protocol used to carry out this process is roughly:
%% sequence diagram describing the protocol used to exchange attestation
%% evidence between client & server
sequenceDiagram
Client->>Client: Generate Nonce
Server->>Server: Generate Nonce
Client->>Server: Nonce
Server->>Client: Nonce
Client->>Client: Generate attest data<br/>(Cert Chain, Log, Attestation)
Server->>Server: Generate attest data<br/>(Cert Chain, Log, Attestation)
Client->>Client: Verify own attestation
Server->>Server: Verify own attestation
Client->>Server: Cert Chain
Server->>Server: Appraise<br/>Cert Chain
Server->>Client: Cert Chain
Client->>Client: Appraise<br/>Cert Chain
Client->>Server: Measurement Log
Server->>Client: Measurement Log
Client->>Server: Attestation
Server->>Server: Verify signature over attestation<br/>/w Leaf cert from chain
Server->>Server: Appraise measurements
Server->>Client: Attestation
Client->>Client: Verify signature over attestation<br/>/w Leaf cert from chain
Client->>Client: Appraise measurements