%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Attestable MCP Server
This project is a remotely verifiable MCP server that uses trusted execution environments (such as Intel SGX) and the RA-TLS protocol to ensure that clients can verify the authenticity and integrity of the code running on the server.
rating : 2 points
downloads : 15
What is Attestable MCP Server?
This is a secure server implementation of the Model Context Protocol (MCP) that allows clients to verify its authenticity before connecting. It uses Intel SGX secure hardware to generate cryptographic proof that the server is running the exact code you expect.How does remote attestation work?
The server provides a special certificate during connection that contains hardware-verified measurements of its running code. Clients can compare these measurements against known-good values to ensure the server hasn't been tampered with.When should you use this?
Ideal for sensitive AI model deployments where you need to verify server integrity, or for regulatory compliance scenarios requiring proof of secure computation environments.Key Features
Client-Verifiable IntegrityClients can cryptographically verify the server is running approved code before sharing sensitive data
Hardware-Protected ExecutionRuns in Intel SGX secure enclaves that protect against host system compromise
Reproducible BuildsAll build artifacts are verifiable against GitHub Actions logs for complete transparency
Benefits and Considerations
Benefits
Eliminates trust in server operators - verify code yourself
Protects against supply chain attacks and runtime tampering
Maintains confidentiality even if the host system is compromised
Considerations
Requires Intel SGX compatible hardware for full security benefits
Slightly higher performance overhead than regular servers
Initial setup requires understanding of attestation concepts
Getting Started
Build the Server
Compile the server inside a secure environment to generate attestation materials
%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%230080ff;%20}%20%3c/style%3e%3c/defs%3e%3cpath%20class='st0'%20d='M16.2,11.1c.4.5.4,1.2,0,1.8l-4.7,7.1h-3.8l5.3-8L7.6,4h3.8l4.7,7.1Z'/%3e%3c/svg%3e)
Generate Security Keys
Create cryptographic keys for the secure enclave
Package for SGX
Prepare the server for secure hardware execution
Run Securely
Start the server with hardware protection enabled
Usage Scenarios
Secure Model DeploymentDeploy sensitive AI models with verifiable integrity guarantees
Regulatory ComplianceDemonstrate secure computation environment for auditors
Frequently Asked Questions
Can I use this without SGX hardware?
How do clients verify the server?
Where can I find the reference measurements?
Learn More
MCP Specification
Official protocol documentation
RA-TLS Explained
Technical details of remote attestation TLS
Intel SGX Overview
Official documentation for the security technology
Featured MCP Services
Notion Api MCP
Certified
A Python-based MCP Server that provides advanced to-do list management and content organization functions through the Notion API, enabling seamless integration between AI models and Notion.
Python
180
4.5 points
Gitlab MCP Server
Certified
The GitLab MCP server is a project based on the Model Context Protocol that provides a comprehensive toolset for interacting with GitLab accounts, including code review, merge request management, CI/CD configuration, and other functions.
TypeScript
132
4.3 points
Markdownify MCP
Markdownify is a multi-functional file conversion service that supports converting multiple formats such as PDFs, images, audio, and web page content into Markdown format.
TypeScript
1.8K
5 points
Duckduckgo MCP Server
Certified
The DuckDuckGo Search MCP Server provides web search and content scraping services for LLMs such as Claude.
Python
871
4.3 points
Unity
Certified
UnityMCP is a Unity editor plugin that implements the Model Context Protocol (MCP), providing seamless integration between Unity and AI assistants, including real - time state monitoring, remote command execution, and log functions.
C#
597
5 points
Figma Context MCP
Framelink Figma MCP Server is a server that provides access to Figma design data for AI programming tools (such as Cursor). By simplifying the Figma API response, it helps AI more accurately achieve one - click conversion from design to code.
TypeScript
6.7K
4.5 points
Gmail MCP Server
A Gmail automatic authentication MCP server designed for Claude Desktop, supporting Gmail management through natural language interaction, including complete functions such as sending emails, label management, and batch operations.
TypeScript
319
4.5 points
Context7
Context7 MCP is a service that provides real-time, version-specific documentation and code examples for AI programming assistants. It is directly integrated into prompts through the Model Context Protocol to solve the problem of LLMs using outdated information.
TypeScript
5.3K
4.7 points