| Milestone | Request Invocation | STF | # Workers per STF | On-chain tx per invocation | read chain state from STF | Supported TEE Manufact. | Remote Attestation Registry |
|---|---|---|---|---|---|---|---|
| M1 ☑ | Proxy | Rust | 1 | 2 | - | Intel | - |
| M2 ☑ | Proxy | Rust or WASM | 1 | 2 | - | Intel | - |
| M3 ☑ | Proxy | Rust or WASM | 1 | 2 | - | Intel | X |
| M4 ☑ | Proxy | Rust or WASM | N (redundant) | 1+N | - | Intel | X |
| M5 ☑ | Proxy | Rust modular | N (redundant) | 1+N | - | Intel | X |
| M6+M7 ☑ | Proxy | Rust modular | N (redundant) | 1+N | X | Intel | X |
| future ☐ | Proxy | Rust or Ink | N (redundant) | 2 | X | Intel + ARM TrustZone + Keystone (?) | X |
| future ☐ | Direct | Rust or Ink | N (master + failover) | << 1 | X | Intel + ARM TrustZone + Keystone (?) | X |
off-chain worker runs STF within an Intel SGX enclave. The state is persisted in a sealed file which can only be read by that very enclave.
The demo STF will be a simple counter.
In addition to M1, the STF is defined by WASM code which is run by a WASMI interpreter within an Intel SGX enclave.
The demo STF will be a simple counter.
substraTEE-worker can remote-attest its own enclave with Intel Attestation Service (IAS). The report signed by IAS is then registered on-chain with substraTEE-registry runtime module. Users can verify a worker’s IAS report before interacting with it. So they can be certain that the correct code is running on a genuine SGX CPU.
Several substraTEE-workers running on different machines can redundantly operate on the same STF. This guarantees that the STF survives the loss of a few SGX machines (going offline, breaking down, denial-of-service). Moreover, this improves integrity guarantees as all the workers register call receipts including the hash of the new state. A single compromised enclave can therefore only break confidentiality, but not integrity, as manipulation would be evident to anyone. Secret sharing among a dynamic set of worker enclaves must be implemented for such redundancy.
Since M5, the STF is modular and has its own crate which can easily be swapped. An example for private transactions has been added
From M6 onwards, substraTEE STF can access chain state in a trustless way. A substrate light client verification logic will be included in the worker enclave that allows the STF to query chain state by means of subscribing to storage over RPC and verifying returned values within the enclave.
(development not yet funded)
ink! is substrate's domain specific contract language on top of Rust. This milestone shall bring ink! contracts to substraTEE.
- direct invocation
- performance benchmarks and optimization
- testnet for stress-tests and showcasing
- use cases: bridges, payment hubs, ...