Free early access—Try it →

OPEN SOURCE AUDIT

Enclave Verification

100% open source code. Independently verify the integrity of our AMD SEV-SNP enclave from your terminal.

Enclave Status

LIVE

AMD SEV-SNP Measurement

SHA-384

14195fde36852b69f2ac17166ebf3223351b1c34814f110339412652819073e061ed7c47e6e00d02a817aeb4992ce20d

Verification recommended from your terminal

AMD cryptographic guarantee

Verifiable VCEK signature

Source Code

Latest commit

0520a8c

View on GitHub

Public API

Attestation endpoint.

The enclave exposes a public endpoint to retrieve AMD SEV-SNP attestation. Verify this attestation before sending credentials.

Current SEV-SNP measurement

AMD VCEK signature

Platform configuration

GET

https://enclave.auditzk.com:3050/api/v1/attestation

Response example

{
  "attestation": {
    "verified": true,
    "sevSnpEnabled": true,
    "vcekVerified": true,
    "measurement": "b747d554..."
  },
  "tlsBinding": {
    "fingerprint": "75:D0:6C:C3...",
    "bound": true
  }
}

How to verify.

Verify that the enclave runs exactly the code published on GitHub. 4 simple steps from your terminal.

Clone repository

Get the source code

Clone repository

Get the source code

Terminal

git clone https://github.com/AuditZK/zero-knowledge-aggregator.git
cd zero-knowledge-aggregator && git checkout 0520a8c

Get attestation

From your terminal

Get attestation

From your terminal

Terminal

curl -s -k https://enclave.auditzk.com:3050/api/v1/attestation

Verify AMD signature

Using snpguest

Verify AMD signature

Using snpguest

Terminal

cargo install snpguest
snpguest fetch ca --endorser vcek ./certs
snpguest verify attestation ./certs report.bin

Compare hashes

Final validation

Compare hashes

Final validation

Terminal

curl -sL https://github.com/AuditZK/zero-knowledge-aggregator/releases/latest/download/measurement.txt -o expected.txt
snpguest display report report.bin | grep measurement > actual.txt
diff expected.txt actual.txt && echo "Match" || echo "DANGER"

Hash Match

Audited code confirmed

Hash Different

Do not send credentials

Quick reference.

1Clone

git clone https://github.com/AuditZK/zero-knowledge-aggregator.git

2Attestation

curl -s -k https://enclave.auditzk.com:3050/api/v1/attestation

3Verify

snpguest verify attestation ./certs report.bin

4Compare

diff expected.txt actual.txt

Required tools

snpguest

Official AMD tool to verify SEV-SNP attestations

curl / curl.exe

Fetch attestation (native on Linux/macOS/Windows 10+)

git

Clone source code for audit

fc / diff

Compare files (fc on Windows, diff on Linux/macOS)

DON'T TRUST, VERIFY

Radical transparency.

Our security model is built on verifiable cryptographic proofs, not promises.

View on GitHub

TEE Security