Expand description
Attestation-bound encrypted tensor transport for confidential ML inference.
This crate provides a secure channel built on X25519 + HKDF-SHA256 + ChaCha20-Poly1305 with pluggable TEE attestation (Nitro, SEV-SNP, mock). It includes binary tensor framing, transparent proxy helpers, and transport backends for TCP and VSock.
Re-exports§
pub use error::Error;pub use error::Result;pub use frame::tensor::DType;pub use frame::tensor::OwnedTensor;pub use frame::tensor::TensorRef;pub use frame::Flags;pub use frame::Frame;pub use frame::FrameType;pub use session::channel::Message;pub use session::channel::SecureChannel;pub use session::retry::RetryPolicy;pub use session::SecurityProfile;pub use session::SessionConfig;pub use session::SessionConfigBuilder;pub use attestation::types::AttestationDocument;pub use attestation::types::ExpectedMeasurements;pub use attestation::types::VerifiedAttestation;pub use attestation::AttestationProvider;pub use attestation::AttestationVerifier;
Modules§
- attestation
- TEE attestation providers and verifiers (mock, Nitro).
- crypto
- Cryptographic primitives: key exchange, AEAD sealing, transcript hashing.
- error
- Error types for every layer of the stack.
- frame
- Binary wire framing and tensor sub-protocol.
- proxy
- Transparent encryption/decryption proxies (client and server).
- session
- Secure session: handshake, encrypted channel, retry policy.
- transport
- Pluggable transport backends (TCP, VSock).