Overview

The ADAPT wrapper for AWS Nitro Enclaves is an implementation of the ADAPT wrapper that is designed to run ins an AWS Nitro Enclave environment.

This topic describes ADAPT wrapper details specific to AWS Nitro Enclaves implementations. Reading the ADAPT wrapper overview first will give you a much better understanding of this topic.

The enclave wrapper uses the enclave version of the ADAPT JS API. The enclave version of the API uses the Nitro build of the MUFL evaluation enviornment. In this build, additional Nitro-specific C++ libraries, such as libnsm, are linked.

The enclave wrapper build uses the nsm library for its cryptographically secure random generator.

In AWS Nitro Enclaves, before sending the transaction to the message broker, the wrapper additionally saves the previous transaction to the backup data storage.

For more information, refer to backup storage data encryption.

Every packet running in AWS Nitro Enclaves can generate an attestation document provided by the enclave. The user data field of the document includes information about the ADAPT packet itself and the control packet of the enclave.

For more information about attestation documents, refer to Identity Proof Document.

To run the ADAPT wrapper for AWS Nitro Enclaves, use the script located at /mufl/utilities/executables/dist/adapt_wrapper_enclave.js in the ADAPT Docker development kit. The source code resides at ./utilities/executables/src/adapt_wrapper_enclave.ts in the main git repository.

For usage instructions, refer to the ADAPT wrapper usage help.