overview
livy-tee is a Rust library for generating Intel TDX attestations, binding application-visible values into them, and verifying the resulting Intel Trust Authority token.
It exposes both high-level attestation APIs for application developers and lower-level primitives for evidence handling, report data, quote extraction, and ITA verification.
how it was made
- The library auto-detects Azure CVM and Linux TDX guest runtimes.
- Applications can commit typed public values, raw bytes, hashes, and nonces before finalizing an attestation.
- Verification can trust a stored signed ITA token locally or reappraise bundled evidence through Intel Trust Authority for fresh verification.