Confidential Consortium Framework

Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.

An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster

Linux Kernel Runtime Guard

return an md5sum of a given file

Trusted Computing based services supporting TPM provisioning and supply chain validation concepts. #nsacyber

[Feature complete] SHA-3 and Keccak checksum utility

Some Android environment detection examples

FPC enables Confidential Chaincode Execution for Hyperledger Fabric using Intel SGX.

INACTIVE - SRI Hash Generator

Alternative to html-webpack-plugin ✅ Renders Eta, EJS, Handlebars, Nunjucks, Pug, Twig templates "out of the box" ✅ Resolves source files of scripts, styles, images in HTML ✅ Uses a template as entry point

File Integrity Manager -

2key-ratchet is an implementation of a Double Ratchet protocol and X3DH in TypeScript utilizing WebCrypto.

attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.

OpenEmbedded layer for the use cases on secure boot, integrity and encryption

Android Security Toolkit & Framework

[Basically feature complete] Keccak-family hashing library

OSM data integrity checks with Atlas

Secure EFI Loader designed to authenticate the non-PE files