Data

Tools

Indexes

Applications

Experiments

Open Source Science

https://github.com/dineshpinto/tee-gemini

https://github.com/dineshpinto/tee-gemini

Science Score: 13.0%

This score indicates how likely this project is to be science-related based on various indicators:

  • CITATION.cff file
  • codemeta.json file
    Found codemeta.json file
  • .zenodo.json file
  • DOI references
  • Academic publication links
  • Academic email domains
  • Institutional organization owner
  • JOSS paper metadata
  • Scientific vocabulary similarity
    Low similarity (6.7%) to scientific vocabulary
Last synced: 6 months ago · JSON representation

Repository

Basic Info
  • Host: GitHub
  • Owner: dineshpinto
  • Language: Python
  • Default Branch: main
  • Size: 5.44 MB
Statistics
  • Stars: 1
  • Watchers: 2
  • Forks: 1
  • Open Issues: 0
  • Releases: 0
Created over 1 year ago · Last pushed over 1 year ago
Metadata Files
Readme

README.md

TEE Gemini Reference Implementation

THIS REPO IS A WIP. DO NOT USE THIS FOR ANYTHING OTHER THAN TESTING.

Run Locally

bash docker run --name tee-gemini tee-gemini

Run on GCP

Using gcloud CLI (COS)

Set all environment variables defined in .env.example.

bash gcloud compute instances create-with-container tee-gemini-testing \ --project=flare-network-sandbox \ --zone=us-central1-a \ --machine-type=c2d-standard-2 \ --network-interface=network-tier=PREMIUM,nic-type=GVNIC,stack-type=IPV4_ONLY,subnet=default \ --maintenance-policy=TERMINATE \ --provisioning-model=STANDARD \ --service-account=83674517876-compute@developer.gserviceaccount.com \ --scopes=https://www.googleapis.com/auth/cloud-platform \ --tags=https-server \ --confidential-compute \ --image=projects/cos-cloud/global/images/cos-stable-113-18244-151-50 \ --boot-disk-size=10GB \ --boot-disk-type=pd-standard \ --boot-disk-device-name=tee-gemini-testing \ --container-image=docker\ \ pull\ ghcr.io/dineshpinto/tee-gemini:main \ --container-restart-policy=always \ --container-privileged \ --container-env=GEMINI_ENDPOINT_ADDRESS=,RPC_URL=,SECONDS_BW_ITERATIONS=,TEE_ADDRESS=,TEE_PRIVATE_KEY=,GEMINI_API_KEY= \ --shielded-secure-boot \ --shielded-vtpm \ --shielded-integrity-monitoring \ --labels=goog-ec-src=vm_add-gcloud,container-vm=cos-stable-113-18244-151-50 \ --confidential-compute

Using gcloud CLI (Confidential Space)

bash gcloud compute instances create-with-container tee-gemini-confidential \ --project=flare-network-sandbox \ --zone=us-central1-a \ --machine-type=c2d-standard-2 \ --network-interface=network-tier=PREMIUM,nic-type=GVNIC,stack-type=IPV4_ONLY,subnet=default \ --maintenance-policy=TERMINATE \ --provisioning-model=STANDARD \ --service-account=83674517876-compute@developer.gserviceaccount.com \ --scopes=https://www.googleapis.com/auth/cloud-platform \ --tags=https-server \ --confidential-compute \ --image=projects/confidential-space-images/global/images/confidential-space-debug-240800 \ --boot-disk-size=11GB \ --boot-disk-type=pd-standard \ --boot-disk-device-name=tee-gemini-confidential \ --container-image=ghcr.io/dineshpinto/tee-gemini:main \ --container-restart-policy=always \ --container-privileged \ --container-env=GEMINI_ENDPOINT_ADDRESS=,RPC_URL=,SECONDS_BW_ITERATIONS=,TEE_PRIVATE_KEY=,GEMINI_API_KEY= \ --shielded-secure-boot \ --shielded-vtpm \ --shielded-integrity-monitoring \ --labels=goog-ec-src=vm_add-gcloud,container-vm=confidential-space-debug-240800 \ --confidential-compute

Using Console

  1. Create a Compute VM
  2. Set the following parameters (any parameters not mentioned should be left default):
  • VM basics: Name: tee-gemini
  • Machine configuration -> Compute Optimized: C2D
  • Security:
    • Identity and API access:
      • Access scopes: Allow full access to all Cloud APIs
    • Confidential VM Service: Enable
    • Shielded VM:
      • Turn on Secure Boot: Check
  • OS and Storage:
    • Change:
      • Confidential images: Container-Optimized-OS 113-18224.151.50 LTS
    • Container
      • Container image: ghcr.io/dineshpinto/tee-gemini:main
      • Run as privileged: Check
      • Environment variables: All environment variables defined in .env.example
  1. Click on Create

Query Gemini API onchain

  1. Call makeRequest with _data as the query to Gemini.

  2. Query getLatestResponse which returns a struct Response with the Gemini response text and metadata.

Query and verify attestation token

  1. Call requestOIDCToken.

  2. See data parameter of OIDCRequestFullfilled event raised in fulfillOIDCToken (callback) transaction.

  3. Copy the data output to a file named token.txt, verify the token with:

bash uv run verify-token --token $(cat token.txt)

If the command runs without any failures, the token signature and payload was successfully verified against issuer. Add the --verbose flag to see more details.

Build

Uses uv.

Install dependencies

bash uv python install 3.12 uv sync

Build container

bash docker build -t tee-gemini .

Run local development server

bash uv run start-gemini

Retrieving Endorsement Keys (EKPub)

You can retrieve the endorsement key for both the encryption key and the signing key. You can use the encryption key to encrypt data so that only the vTPM can read it, or the signing key to verify signatures that the vTPM makes. You can also use the key to ascertain the identity of a VM instance before sending sensitive information to it.

bash gcloud compute instances get-shielded-identity tee-gemini --zone us-central1-a

Inspect the TEE encryption and signing keys

bash gcloud compute instances get-shielded-identity tee-gemini --zone us-central1-a --format=json | jq -r '.encryptionKey.ekCert' > ekcert.pem openssl x509 -in ekcert.pem -text -noout

bash gcloud compute instances get-shielded-identity tee-gemini --zone us-central1-a --format=json | jq -r '.signingKey.ekCert' > akcert.pem openssl x509 -in akcert.pem -text -noout

Owner

  • Name: Dinesh Pinto
  • Login: dineshpinto
  • Kind: user
  • Location: Switzerland/Germany

quantum info PhD student @ EPFL, pythonista & rustacean