RFC-0002 — Multi-vendor attestation report
Status: Draft · ratify end Q3 2026 Owner: Security Lead
What it defines
How Intel TDX + AMD SEV-SNP + NVIDIA H100/H200/B200 CC attestation quotes are combined into one signed report, hashed, and stored on-chain.
Vendor matrix per tier
| Tier | Required quotes |
|---|---|
dc-premium | NVIDIA CC + (TDX OR SEV-SNP) |
dc-standard | NVIDIA CC + (TDX OR SEV-SNP) |
cloud-rented | NVIDIA CC + Intel TDX |
prosumer/edge | none (stake-only) |
compliance (HIPAA/PCI) | all three |
Storage
Only the report_hash, gpu_uuid, vendor_set, and expires_at go on-chain (pallet-attestation-registry). Full report blob lives off-chain, IPFS-pinned.
CRL
Revocation list entries are multisig-gated (5-of-7) with 14-day timelock — except for sanctions and CVE-flagged firmware which use 3-of-7 fast-track. Operators must re-attest within 7-day grace + 14-day soft-slash + 30-day full deregistration.
Side-channel disclosure
Hopper unencrypted NVLink, BAR0 register leakage (arxiv 2507.02770), bimodal timing channels are explicit limitations documented in operator ToS.