LAS for Development¶

We explain how to start a Local Attestation Service (LAS) instance for development. LAS is need to perform a local attestation (i.e., this creates a quote that can be verified by CAS). Note that this LAS runs inside a debug enclave, i.e., do not use this LAS instance in production. For setting up a production mode LAS, send us an email.

Pulling LAS Image¶

To start LAS, you first pull LAS to your local registry. To do so, please set the environment variable LAS to the image repository that we given you access to. The LAS image name might looke like this:

export LAS=sconecuratedimages/$MYCOMPANY:las

Pull the image from Docker hub like this:

docker pull $LAS

If this fails, ensure that you are logged into docker (via docker login) and that you set environment variable MYCOMPANY properly.

Starting and Stopping LAS¶

The easiest way to start LAS is to use a simple Docker compose file. Please create a separate directory for that:

mkdir -p LAS
cd LAS

Create the following compose file:

cat > docker-compose.yml <<EOF
version: '3.2'
services:
    las:
        image: sconecuratedimages/$MYCOMPANY:las
        devices:
         - "/dev/isgx"
        ports:
          - target: 18766
            published: 18766
            protocol: tcp
            mode: host
EOF

Now start LAS in the background as follows:

docker-compose up -d las

By executing

docker-compose logs las

you will see the output of LAS.

You can check if LAS is still running by executing:

docker-compose up -d las

This will result in an output like

las_las_1 is up-to-date

You can stop LAS by executing:

docker-compose stop