Skip to content

test(experiments): validate C6 cross-operator attestation in software#24

Merged
imran-siddique merged 1 commit into
mainfrom
feat/cross-operator-attestation
Jul 1, 2026
Merged

test(experiments): validate C6 cross-operator attestation in software#24
imran-siddique merged 1 commit into
mainfrom
feat/cross-operator-attestation

Conversation

@imran-siddique

Copy link
Copy Markdown
Contributor

What

Validates the final claim, C6, completing the claim suite. A two-operator harness composes the pieces already built (SEV-SNP verifier + measurement pinning + sealed channel):

  • Independent keys across two trust domains (distinct channel keys and VCEKs).
  • Mutual attestation: each operator verifies the counterparty's report against a pinned golden measurement and recovers the attested channel key.
  • Confidential cross-operator delegation: A seals a delegated task to B's attested key; only B opens it; the path sees ciphertext.
  • Binary-swap detection: a tampered binary changes the measurement, so the report is rejected with AttestationFailed even though its signature is valid.

Honesty

Report-signature and certificate-chain paths use synthetic vectors (a genuine report needs SEV-SNP hardware), matching how cmcp validates its cross-org claim. Real hardware end to end, and driving the pipeline off a live A2A transport, remain open. Shared synthetic-report helpers moved to conftest.

All six claims (C1-C6) are now validated experiments. Suite: 92 passed, 0 skipped, 99% coverage.

Closes #7

🤖 Generated with Claude Code

Compose the SEV-SNP verifier, measurement pinning, and the sealed channel into
a two-operator harness: two operators in separate trust domains, each binding
its sealed-channel public key into an attestation report. The experiment and CI
test demonstrate independent keys, mutual attestation, confidential
cross-operator delegation (seal to the counterparty's attested key), and
binary-swap detection (a changed measurement is rejected with AttestationFailed).

Report-signature and chain paths use synthetic vectors (a genuine report needs
SEV-SNP hardware), matching how cmcp validates its cross-org claim; real
hardware end to end and the live A2A transport binding remain open. Shared
synthetic-report helpers moved to conftest.

All six claims (C1-C6) are now validated experiments. Suite: 92 passed, 99%.

Closes #7

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
@imran-siddique imran-siddique merged commit ed6a3b2 into main Jul 1, 2026
11 checks passed
@imran-siddique imran-siddique deleted the feat/cross-operator-attestation branch July 1, 2026 17:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

test(experiments): C6 cross-operator attestation (unblock)

1 participant