AMD SEV-SNP
Hardware-enforced confidential computing
AuditZK runs its aggregation enclave on AMD Secure Encrypted Virtualization – Secure Nested Paging (SEV-SNP). Credentials are decrypted only inside an encrypted, integrity-protected VM whose state cannot be read or tampered with — not by the hypervisor, not by the host OS, and not by AuditZK operators.
Memory encryption
Every page of enclave RAM is encrypted with a hardware key that never leaves the CPU.
Remote attestation
Each enclave ships a signed SNP report proving its measurement before any secret is released.
Integrity guarantees
Nested paging blocks replay and remap attacks, so the runtime state stays exactly as measured at boot.