TEE (Trusted Execution Enclave) proves that a given code is running as expected
Code gets packed into TEE
enclave image hash
verifies that the code running inside
the TEE (Trusted Execution Environment) is indeed the original code.To confirm which code is running in the TEE, take the source code and
generate a new enclave image. If you end up with the same enclave image hash
, you have verified that it matches the code currently running
inside the TEE.TEE starts
AWS signs the attestation
LLM Proofs
hash
field.The hash is then signed with the TEE’s private key, producing the
signature
field.Finally, the Galadriel API includes the full attestation
and public_key
in the LLM response. With these four pieces of information: hash
,
signature
, attestation
, and public_key
you can verify that an LLM
inference genuinely took place inside the enclave.