The frontend performs Intel TDX quote verification to attest that the ER server runs on genuine secure hardware. This is executed via verifyTeeRpcIntegrity.
Generate a random 32-byte challenge and encode it as base64
Send the challenge to the TEE RPC server to receive a TDX quote
Fetch collateral (certificates) via PCCS for the quote
Verify the quote using the DCAP QVL WASM module against the collateral and current time
Copy
Ask AI
import { verifyTeeRpcIntegrity } from '@magicblock-labs/ephemeral-rollups-sdk';const isIntegrityVerified = await verifyTeeRpcIntegrity(PRIVATE_ER_URL);