Class: Google::Cloud::ConfidentialComputing::V1::TpmAttestation

Inherits:

Object

• Object
• Google::Cloud::ConfidentialComputing::V1::TpmAttestation

Extended by:

Protobuf::MessageExts::ClassMethods

Includes:

Protobuf::MessageExts

Defined in:

proto_docs/google/cloud/confidentialcomputing/v1/service.rb

Overview

TPM2 data containing everything necessary to validate any platform state measured into the TPM.

Defined Under Namespace

Classes: Quote

Instance Attribute Summary

• #ak_cert ⇒ ::String

  DER-encoded X.509 certificate of the Attestation Key (otherwise known as an AK or a TPM restricted signing key) used to generate the quotes.

• #canonical_event_log ⇒ ::String

  An Event Log containing additional events measured into the TPM that are not already present in the tcg_event_log.

• #cert_chain ⇒ ::Array<::String>

  List of DER-encoded X.509 certificates which, together with the ak_cert, chain back to a trusted Root Certificate.

• #quotes ⇒ ::Array<::Google::Cloud::ConfidentialComputing::V1::TpmAttestation::Quote>

  TPM2 PCR Quotes generated by calling TPM2_Quote on each PCR bank.

• #tcg_event_log ⇒ ::String

  The binary TCG Event Log containing events measured into the TPM by the platform firmware and operating system.

Instance Attribute Details

#ak_cert ⇒ ::String

Returns DER-encoded X.509 certificate of the Attestation Key (otherwise known as an AK or a TPM restricted signing key) used to generate the quotes.

Returns:

• (::String) —

  DER-encoded X.509 certificate of the Attestation Key (otherwise known as an AK or a TPM restricted signing key) used to generate the quotes.

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 200

class TpmAttestation
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Information about Platform Control Registers (PCRs) including a signature
  # over their values, which can be used for remote validation.
  # @!attribute [rw] hash_algo
  #   @return [::Integer]
  #     The hash algorithm of the PCR bank being quoted, encoded as a TPM_ALG_ID
  # @!attribute [rw] pcr_values
  #   @return [::Google::Protobuf::Map{::Integer => ::String}]
  #     Raw binary values of each PCRs being quoted.
  # @!attribute [rw] raw_quote
  #   @return [::String]
  #     TPM2 quote, encoded as a TPMS_ATTEST
  # @!attribute [rw] raw_signature
  #   @return [::String]
  #     TPM2 signature, encoded as a TPMT_SIGNATURE
  class Quote
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # @!attribute [rw] key
    #   @return [::Integer]
    # @!attribute [rw] value
    #   @return [::String]
    class PcrValuesEntry
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end
end

#canonical_event_log ⇒ ::String

Returns An Event Log containing additional events measured into the TPM that are not already present in the tcg_event_log. Formatted as described in the "Canonical Event Log Format" TCG Specification.

Returns:

• (::String) —

  An Event Log containing additional events measured into the TPM that are not already present in the tcg_event_log. Formatted as described in the "Canonical Event Log Format" TCG Specification.

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 200

class TpmAttestation
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Information about Platform Control Registers (PCRs) including a signature
  # over their values, which can be used for remote validation.
  # @!attribute [rw] hash_algo
  #   @return [::Integer]
  #     The hash algorithm of the PCR bank being quoted, encoded as a TPM_ALG_ID
  # @!attribute [rw] pcr_values
  #   @return [::Google::Protobuf::Map{::Integer => ::String}]
  #     Raw binary values of each PCRs being quoted.
  # @!attribute [rw] raw_quote
  #   @return [::String]
  #     TPM2 quote, encoded as a TPMS_ATTEST
  # @!attribute [rw] raw_signature
  #   @return [::String]
  #     TPM2 signature, encoded as a TPMT_SIGNATURE
  class Quote
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # @!attribute [rw] key
    #   @return [::Integer]
    # @!attribute [rw] value
    #   @return [::String]
    class PcrValuesEntry
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end
end

#cert_chain ⇒ ::Array<::String>

Returns List of DER-encoded X.509 certificates which, together with the ak_cert, chain back to a trusted Root Certificate.

Returns:

• (::Array<::String>) —

  List of DER-encoded X.509 certificates which, together with the ak_cert, chain back to a trusted Root Certificate.

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 200

class TpmAttestation
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Information about Platform Control Registers (PCRs) including a signature
  # over their values, which can be used for remote validation.
  # @!attribute [rw] hash_algo
  #   @return [::Integer]
  #     The hash algorithm of the PCR bank being quoted, encoded as a TPM_ALG_ID
  # @!attribute [rw] pcr_values
  #   @return [::Google::Protobuf::Map{::Integer => ::String}]
  #     Raw binary values of each PCRs being quoted.
  # @!attribute [rw] raw_quote
  #   @return [::String]
  #     TPM2 quote, encoded as a TPMS_ATTEST
  # @!attribute [rw] raw_signature
  #   @return [::String]
  #     TPM2 signature, encoded as a TPMT_SIGNATURE
  class Quote
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # @!attribute [rw] key
    #   @return [::Integer]
    # @!attribute [rw] value
    #   @return [::String]
    class PcrValuesEntry
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end
end

#quotes ⇒ ::Array<::Google::Cloud::ConfidentialComputing::V1::TpmAttestation::Quote>

Returns TPM2 PCR Quotes generated by calling TPM2_Quote on each PCR bank.

Returns:

• (::Array<::Google::Cloud::ConfidentialComputing::V1::TpmAttestation::Quote>) —

  TPM2 PCR Quotes generated by calling TPM2_Quote on each PCR bank.

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 200

class TpmAttestation
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Information about Platform Control Registers (PCRs) including a signature
  # over their values, which can be used for remote validation.
  # @!attribute [rw] hash_algo
  #   @return [::Integer]
  #     The hash algorithm of the PCR bank being quoted, encoded as a TPM_ALG_ID
  # @!attribute [rw] pcr_values
  #   @return [::Google::Protobuf::Map{::Integer => ::String}]
  #     Raw binary values of each PCRs being quoted.
  # @!attribute [rw] raw_quote
  #   @return [::String]
  #     TPM2 quote, encoded as a TPMS_ATTEST
  # @!attribute [rw] raw_signature
  #   @return [::String]
  #     TPM2 signature, encoded as a TPMT_SIGNATURE
  class Quote
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # @!attribute [rw] key
    #   @return [::Integer]
    # @!attribute [rw] value
    #   @return [::String]
    class PcrValuesEntry
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end
end

#tcg_event_log ⇒ ::String

Returns The binary TCG Event Log containing events measured into the TPM by the platform firmware and operating system. Formatted as described in the "TCG PC Client Platform Firmware Profile Specification".

Returns:

• (::String) —

  The binary TCG Event Log containing events measured into the TPM by the platform firmware and operating system. Formatted as described in the "TCG PC Client Platform Firmware Profile Specification".

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 200

class TpmAttestation
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Information about Platform Control Registers (PCRs) including a signature
  # over their values, which can be used for remote validation.
  # @!attribute [rw] hash_algo
  #   @return [::Integer]
  #     The hash algorithm of the PCR bank being quoted, encoded as a TPM_ALG_ID
  # @!attribute [rw] pcr_values
  #   @return [::Google::Protobuf::Map{::Integer => ::String}]
  #     Raw binary values of each PCRs being quoted.
  # @!attribute [rw] raw_quote
  #   @return [::String]
  #     TPM2 quote, encoded as a TPMS_ATTEST
  # @!attribute [rw] raw_signature
  #   @return [::String]
  #     TPM2 signature, encoded as a TPMT_SIGNATURE
  class Quote
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # @!attribute [rw] key
    #   @return [::Integer]
    # @!attribute [rw] value
    #   @return [::String]
    class PcrValuesEntry
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end
end