A secret is data that should only be readable by the intended parties. When a secret is sealed to an ACL of one or more enclave identities, the encrypted secret is only decryptable by enclaves whose identities match that ACL expectation.
Represents information about a sealing root. This information is used by the
program to instantiate the correct implementation of the
A type of sealing root.
Indicates that the secret is sealed to a machine-local (e.g., CPU-based) sealing root.
Indicates that the secret is sealed to a remote-service-based sealing root (e.g., a secret-escrow service).