Boot new QOS nodes without manually submitting Quorum Key shares to new nodes. Instead, a new QOS node should be able to receive a Quorum Key from another, already provisioned node after passing the cryptographic attestation check. The new QOS nodes must be in the same namespace as the ones they are requesting the Quorum Key from.
- New Node: The un-provisioned node, requesting a Quorum Key.
- Original Node: The fully provisioned node that the Quorum Key is requested from.
- Client: An entity that can make arbitrary requests to QOS nodes. For the sake of having a concrete mental model in the below descriptions, we can think of the client as a script that takes as inputs a manifest and the IP address of the New Node + Original Node, and makes the necessary requests to complete the key forwarding process.
- New Manifest: The manifest used to boot the New Node.
- Local Manifest: The manifest used to boot the Original Node. It is local relative to the Original Node.
- Nonce: A strictly monotonically increasing counter used to track the latest manifest of a Namespace. Concretely, anytime a new manifest is created for a Namespace, we expect it to have a Nonce 1 greater than the previous most recent manifest.
- Pivot App: The application a Node is intended to run. The application is also commonly referred to as an Enclave Application.
The details for how QOS nodes communicate with each other can vary, but for the sake of this example we assume that all requests will be made from a client and nodes do not communicate directly with each other.
-
The New Node gets a
BootKeyForwardRequestfrom the Client.struct BootKeyForwardRequest { manifest_envelope: ManifestEnvelope, pivot: Vec<u8> }
-
The New Node processes the request by performing the following steps:
-
Check signatures over the manifest envelope.
-
Generate an Ephemeral Key.
-
Make an attestation request, placing the manifest hash in the
user_datafield and the Ephemeral Key public key in thepublic_keyfield. -
Return the NSM Response containing COSE Sign1 encoded attestation document.
struct BootKeyForwardResponse { nsm_response: NsmResponse, }
-
-
The Original Node gets a
ExportKeyRequestfrom the the Client.struct ExportKeyRequest { manifest_envelope: ManifestEnvelope, cose_sign1_attestation_document: Vec<u8> }
-
The Original Node processes the request by performing the following steps:
-
Check the basic validity of the attestation doc (cert chain etc). Ensures that the attestation document is actually from an AWS controlled NSM module and the document's timestamp was recent.
-
Check the signatures over the New Manifest. Ensures that K Manifest Set Members approved the New Manifest.
-
Check that the Quorum Key of the Local Manifest matches the Quorum Key of the New Manifest. This ensures the request is for the correct Quorum Key.
-
Check that the Manifest Set of the New Manifest matches the Manifest Set of the Local Manifest. Ensures that the signatures are from a trusted Manifest Set. Note that there is still a vulnerability here if we have try to retire a Manifest Set because a critical threshold of it was compromised - that malicious Manifest Set could boot off of an Original Node - thus it's important to retire all Original Nodes ASAP that use compromised Manifest Sets.
-
Check that the Namespace of the Local Manifest matches the namespace of the New Manifest. Namespaces are a social construct, but we only want to allow forwarding a Quorum Key to Nodes in the same Namespace to help ensure that the nonce is not abused.
-
Check that the nonce of the New Manifest is greater than or equal to the nonce of the Local Manifest. If they have the same nonce, we check that the Local Manifest has the same hash as an extra measure. Note that while the nonce is verified programmatically in this routine, its maintenance relative to other manifests in the namespace is a social coordination problem and is meant to be solved by the Manifest Set Members approving the manifest. In other words, we rely on the Manifest Set Members to correctly increment the nonce when any change is made to the latest manifest for a namespace.
-
Check that the hash of the new manifest is in the
user_datafield of the attestation doc. -
Check that PCR0, PCR1, PCR2, and PCR3 in the New Manifest match the PCRs in the attestation document. This ensures the New Manifest was used against a Nitro enclave booted with the intended version of QOS. Note that we assume the values for PCR{0, 1 , 2} correspond to a desired version of QOS because the Manifest Set Members had K approvals.
-
Check that PCR3 in the New Manifest is in the Local Manifests. PCR3 is the IAM role assigned to the EC2 host of the enclave. An IAM role contains an AWS organization's unique ID. By only using the approved PCR3 value we ensure that we only ever send the Quorum Key to an enclave that is controlled by the operator, not an enclave that some malicious entity runs that otherwise configured identically to one of the operator's enclaves.
-
Return the Quorum Key encrypted to the New Node's Ephemeral Key extracted from the attestation document and a signature over the encrypted payload. The Original Node uses its Quorum Key to create the signature.
struct ExportKeyResponse { encrypted_quorum_key: Vec<u8>, signature: Vec<u8> }
-
-
The Client takes the encrypted Quorum Key and constructs.
struct InjectKeyRequest { encrypted_quorum_key: Vec<u8>, signature: Vec<u8> }
-
The New Node processes the request by performing the following steps:
- Verify the signature over the
encrypted_quorum_keyagainst the Quorum Key specified in the New Manifest. - Decrypt the encrypted Quorum Key in the request with the Ephemeral Key.
- Check that the decrypted Quorum Key public key matches the one specified in the New Manifest.
- Write the Quorum Key to the file system, at which point New Node will automatically pivot to running the Pivot App.
- Return
InjectKeyResponse { }(an empty struct) to signify that it was successful.
- Verify the signature over the