PickSkill
← Back

sev-attestation

Perform AMD SEV-SNP remote attestation to cryptographically verify VM identity and integrity. Use when proving a VM is running in a genuine AMD SEV-SNP confidential computing environment, verifying VM integrity before trusting it with secrets, checking SEV-SNP availability, generating attestation reports, validating AMD certificate chains (ARK/ASK/VCEK), or debugging attestation failures.

GitHubOpen EntryManusRun Skill in Manus
How to load & run skills
ClaudeClaude CodeOpenAIOpenAI CodexCursorCursorAntigravityAntigravity
GitHubRepoHomepageClawHubClawHub
README.md
Rendered from GitHub raw
View raw ↗
On this page
SEV-SNP 远程证明工具快速开始检测 SEV-SNP 是否可用运行完整证明流程脚本说明依赖参考文档

SEV-SNP 远程证明工具

AMD SEV-SNP 远程证明,用于验证虚拟机身份和完整性。

快速开始

# 检测 SEV-SNP 是否可用
./scripts/detect-sev-snp.sh
 
# 运行完整证明流程
./scripts/full-attestation.sh ./output

脚本说明

脚本 功能
detect-sev-snp.sh 检测 SEV-SNP 可用性
generate-report.sh 生成证明报告
fetch-certificates.sh 从 AMD 获取证书
verify-chain.sh 验证证书链
verify-report.sh 验证报告签名
full-attestation.sh 完整证明流程

依赖

  • snpguest (cargo install snpguest)
  • openssl
  • curl
  • root 权限

参考文档

  • references/report-fields.md - 报告字段说明
  • references/error-codes.md - 错误排查
  • references/manual-verification.md - 手动验证方法