CCxTrust: A Confidential Computing Platform Leveraging Collaborative Trust from TEE and TPM
CCxTrust is a novel confidential computing platform that cleverly combines the strengths of Trusted Execution Environments (TEEs) and Trusted Platform Modules (TPMs) to establish a collaborative trust framework. By leveraging the black-box Root of Trust (RoT) embedded in CPU-TEEs and the flexible white-box RoT of TPMs, CCxTrust achieves end-to-end protection of sensitive data and models, overcoming the limitations of relying on a single hardware RoT. The platform implements independent Roots of Trust for Measurement (RTM) and a collaborative Root of Trust for Report (RTR), further enhanced by a composite attestation protocol for improved security and efficiency. Experimental results demonstrate significant performance advantages.