Skip to main content

decentriq_platform.attestation

Variables

enclave_specifications: decentriq_platform.attestation.EnclaveSpecifications : The main catalogue of enclave specifications available within the Decentriq platform.

Classes

AdformDspWorkerConfiguration

AdformDspWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

input : Field adform_dsp.AdformDspWorkerConfiguration.input

segment_owners : Field adform_dsp.AdformDspWorkerConfiguration.segment_owners

AttestationSpecification

AttestationSpecification(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

amdSnp : Field attestation.AttestationSpecification.amdSnp

awsNitro : Field attestation.AttestationSpecification.awsNitro

intelDcap : Field attestation.AttestationSpecification.intelDcap

intelDcapMrsigner : Field attestation.AttestationSpecification.intelDcapMrsigner

intelEpid : Field attestation.AttestationSpecification.intelEpid

AttestationSpecificationAmdSnp

AttestationSpecificationAmdSnp(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

amdArkDer : Field attestation.AttestationSpecificationAmdSnp.amdArkDer

authorizedChipIds : Field attestation.AttestationSpecificationAmdSnp.authorizedChipIds

decentriqDer : Field attestation.AttestationSpecificationAmdSnp.decentriqDer

measurement : Field attestation.AttestationSpecificationAmdSnp.measurement

roughtimePubKey : Field attestation.AttestationSpecificationAmdSnp.roughtimePubKey

AttestationSpecificationIntelDcap

AttestationSpecificationIntelDcap(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

acceptConfigurationNeeded : Field attestation.AttestationSpecificationIntelDcap.acceptConfigurationNeeded

acceptDebug : Field attestation.AttestationSpecificationIntelDcap.acceptDebug

acceptOutOfDate : Field attestation.AttestationSpecificationIntelDcap.acceptOutOfDate

acceptRevoked : Field attestation.AttestationSpecificationIntelDcap.acceptRevoked

dcapRootCaDer : Field attestation.AttestationSpecificationIntelDcap.dcapRootCaDer

mrenclave : Field attestation.AttestationSpecificationIntelDcap.mrenclave

AttestationSpecificationIntelDcapMrsigner

AttestationSpecificationIntelDcapMrsigner(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

acceptConfigurationNeeded : Field attestation.AttestationSpecificationIntelDcapMrsigner.acceptConfigurationNeeded

acceptDebug : Field attestation.AttestationSpecificationIntelDcapMrsigner.acceptDebug

acceptOutOfDate : Field attestation.AttestationSpecificationIntelDcapMrsigner.acceptOutOfDate

acceptRevoked : Field attestation.AttestationSpecificationIntelDcapMrsigner.acceptRevoked

dcapRootCaDer : Field attestation.AttestationSpecificationIntelDcapMrsigner.dcapRootCaDer

isvprodid : Field attestation.AttestationSpecificationIntelDcapMrsigner.isvprodid

mrsigner : Field attestation.AttestationSpecificationIntelDcapMrsigner.mrsigner

sigstoreRootOlpcJson : Field attestation.AttestationSpecificationIntelDcapMrsigner.sigstoreRootOlpcJson

AzureBlobStorageWorkerConfiguration

AzureBlobStorageWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

credentialsDependency : Field azure_blob_storage.AzureBlobStorageWorkerConfiguration.credentialsDependency

exportRole : Field azure_blob_storage.AzureBlobStorageWorkerConfiguration.exportRole

importRole : Field azure_blob_storage.AzureBlobStorageWorkerConfiguration.importRole

ContainerWorkerConfiguration

ContainerWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

static : Field compute_container.ContainerWorkerConfiguration.static

DataSourceS3WorkerConfiguration

DataSourceS3WorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

credentialsDependency : Field data_source_s3.DataSourceS3WorkerConfiguration.credentialsDependency

s3Provider : Field data_source_s3.DataSourceS3WorkerConfiguration.s3Provider

source : Field data_source_s3.DataSourceS3WorkerConfiguration.source

DataSourceSnowflakeWorkerConfiguration

DataSourceSnowflakeWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

credentialsDependency : Field data_source_snowflake.DataSourceSnowflakeWorkerConfiguration.credentialsDependency

source : Field data_source_snowflake.DataSourceSnowflakeWorkerConfiguration.source

DatasetSinkWorkerConfiguration

DatasetSinkWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

datasetImportId : Field dataset_sink.DatasetSinkWorkerConfiguration.datasetImportId

encryptionKeyDependency : Field dataset_sink.DatasetSinkWorkerConfiguration.encryptionKeyDependency

inputs : Field dataset_sink.DatasetSinkWorkerConfiguration.inputs

isKeyHexEncoded : Field dataset_sink.DatasetSinkWorkerConfiguration.isKeyHexEncoded

DriverTaskConfig

DriverTaskConfig(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

noop : Field gcg.DriverTaskConfig.noop

staticContent : Field gcg.DriverTaskConfig.staticContent

EnclaveSpecifications

EnclaveSpecifications(
    specifications: Dict[str, decentriq_platform.types.EnclaveSpecification],
)

Provider of the available enclave specifications provided by the Decentriq platform.

Enclave specifications enable you to express which particular enclaves you trust. The field containing the measurement (e.g. mrenclave in the case of Intel SGX) identifies the exact binary that will process your data. Users of the Decentriq platform are encouraged to reproduce this value by building the enclave binary from audited source code and re-producing the measurement (in the case of Intel SGX, this would involve simply hashing the produced executable).

When connecting to the driver enclave, the configured attestation algorithm will guarantee that the enclave you connect to is the one corresponding to the enclave specification you chose. The associated root certificate will be used to verify that the attestation was signed by the expected party (e.g. Intel/AMD/Amazon, depending on the CC technology used).

Any communication between the driver enclave and worker enclaves handling your data will also first be secured by additional attestation procedures. Which enclaves are trusted by the driver enclave is controlled by choosing the additional enclave specs from the respective compute packages.

A list of enclave specifications, each encoding your trust in a particular enclave type, can be obtained by selecting a subset of the enclave specifications provided by the object decentriq_platform.enclave_specifications. Selecting the subset of versions should be done by calling its versions method.

all

def all(
    self,
)> List[decentriq_platform.types.EnclaveSpecification]

Get a list of all available enclave specifications.

latest

def latest(
    self,
)> Dict[str, decentriq_platform.types.EnclaveSpecification]

Select the latest specification of each enclave type

list

def list(
    self,
)> List[str]

Get a list of all available enclave identifiers.

merge

def merge(
    self,
    other,
)

Merge two sets of enclave specifications into a single set.

versions

def versions(
    self,
    enclave_versions: List[str],
)> Dict[str, decentriq_platform.types.EnclaveSpecification]

Get the enclave specifications for the given versioned enclave types.

Make sure to always include the specification of a driver enclave, e.g. "decentriq.driver:v1" as this is the node with which you communicate directly. Add additional versioned enclaves depending on the compute module you use. Refer to the main documentation page of each compute module to learn which enclaves are available.

GoogleAdManagerWorkerConfiguration

GoogleAdManagerWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

bucket : Field google_ad_manager.GoogleAdManagerWorkerConfiguration.bucket

credentialsDependency : Field google_ad_manager.GoogleAdManagerWorkerConfiguration.credentialsDependency

identifierKind : Field google_ad_manager.GoogleAdManagerWorkerConfiguration.identifierKind

input : Field google_ad_manager.GoogleAdManagerWorkerConfiguration.input

inputHasHeaders : Field google_ad_manager.GoogleAdManagerWorkerConfiguration.inputHasHeaders

listId : Field google_ad_manager.GoogleAdManagerWorkerConfiguration.listId

objectName : Field google_ad_manager.GoogleAdManagerWorkerConfiguration.objectName

GoogleDv360SinkWorkerConfiguration

GoogleDv360SinkWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

advertiserId : Field google_dv_360_sink.GoogleDv360SinkWorkerConfiguration.advertiserId

credentialsDependency : Field google_dv_360_sink.GoogleDv360SinkWorkerConfiguration.credentialsDependency

description : Field google_dv_360_sink.GoogleDv360SinkWorkerConfiguration.description

displayName : Field google_dv_360_sink.GoogleDv360SinkWorkerConfiguration.displayName

input : Field google_dv_360_sink.GoogleDv360SinkWorkerConfiguration.input

membershipDurationDays : Field google_dv_360_sink.GoogleDv360SinkWorkerConfiguration.membershipDurationDays

MetaSinkWorkerConfiguration

MetaSinkWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

accessTokenDependency : Field meta_sink.MetaSinkWorkerConfiguration.accessTokenDependency

adAccountId : Field meta_sink.MetaSinkWorkerConfiguration.adAccountId

apiVersion : Field meta_sink.MetaSinkWorkerConfiguration.apiVersion

audienceName : Field meta_sink.MetaSinkWorkerConfiguration.audienceName

input : Field meta_sink.MetaSinkWorkerConfiguration.input

MicrosoftDspWorkerConfiguration

MicrosoftDspWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

input : Field microsoft_dsp.MicrosoftDspWorkerConfiguration.input

member_info : Field microsoft_dsp.MicrosoftDspWorkerConfiguration.member_info

segment_info : Field microsoft_dsp.MicrosoftDspWorkerConfiguration.segment_info

PermutiveWorkerConfiguration

PermutiveWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

credentialsDependency : Field permutive.PermutiveWorkerConfiguration.credentialsDependency

exportRole : Field permutive.PermutiveWorkerConfiguration.exportRole

importId : Field permutive.PermutiveWorkerConfiguration.importId

importRole : Field permutive.PermutiveWorkerConfiguration.importRole

inputHasHeaders : Field permutive.PermutiveWorkerConfiguration.inputHasHeaders

segmentCode : Field permutive.PermutiveWorkerConfiguration.segmentCode

segmentName : Field permutive.PermutiveWorkerConfiguration.segmentName

PostWorkerConfiguration

PostWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

useMockBackend : Field compute_post.PostWorkerConfiguration.useMockBackend

S3SinkWorkerConfiguration

S3SinkWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

dqDspCredentials : Field compute_s3_sink.S3SinkWorkerConfiguration.dqDspCredentials

endpoint : Field compute_s3_sink.S3SinkWorkerConfiguration.endpoint

objects : Field compute_s3_sink.S3SinkWorkerConfiguration.objects

region : Field compute_s3_sink.S3SinkWorkerConfiguration.region

s3Provider : Field compute_s3_sink.S3SinkWorkerConfiguration.s3Provider

userDefinedCredentials : Field compute_s3_sink.S3SinkWorkerConfiguration.userDefinedCredentials

SalesforceWorkerConfiguration

SalesforceWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

apiName : Field salesforce.SalesforceWorkerConfiguration.apiName

credentialsDependency : Field salesforce.SalesforceWorkerConfiguration.credentialsDependency

domainUrl : Field salesforce.SalesforceWorkerConfiguration.domainUrl

exportRole : Field salesforce.SalesforceWorkerConfiguration.exportRole

importRole : Field salesforce.SalesforceWorkerConfiguration.importRole

SqlWorkerConfiguration

SqlWorkerConfiguration(
    *args,
    **kwargs,
)

A ProtocolMessage

Ancestors (in MRO)

  • google.protobuf.pyext._message.CMessage
  • google.protobuf.message.Message Instance variables

computation : Field compute_sql.SqlWorkerConfiguration.computation

validation : Field compute_sql.SqlWorkerConfiguration.validation