diff --git a/docs/fundamentals/certification.md b/docs/fundamentals/certification.md index 0bcd7820..588003ae 100644 --- a/docs/fundamentals/certification.md +++ b/docs/fundamentals/certification.md @@ -5,13 +5,13 @@ slug: "/certification" sidebar_position: 6 --- -Super Protocol uses the certification system for signing data, verifying signatures, and ensuring applications operate in a correct confidential computing environment. The system publishes verified data in the blockchain on behalf of confidential containers, allowing anyone to validate application integrity and ensure confidentiality. +Super Protocol uses a certification system for signing data, verifying signatures, and ensuring applications operate within a trusted confidential computing environment. Verified data is published on the blockchain on behalf of confidential containers, allowing anyone to validate application integrity and ensure confidentiality. End users only interact with issued certificates and verify signatures, while the complexities of Remote Attestation are seamlessly managed in the background. -All the system components are open-source, which guarantees transparency and verifiability. +All the system components are open-source, ensuring transparency and verifiability. ## Architecture -The backbone of the system is a hierarchical structure of Certification Authorities. Each Certification Authority works in a Confidential Virtual Machine (VM) executed inside a Trusted Execution Environment (TEE)—Intel SGX enclave. +The backbone of the system is a hierarchical structure of Certification Authorities. Each Certification Authority operates inside a Trusted Execution Environment (TEE)—Intel SGX enclave.
@@ -19,33 +19,22 @@ The backbone of the system is a hierarchical structure of Certification Authorit The Root Certification Authority (*Root CA*) is located at the highest hierarchical level. At the start, Root CA generates a self-signed certificate, embedding an SGX attestation quote. -Distributed SubRoot Certification Authorities (*SubRoot CAs*) operate under the Root CA at the next hierarchical level. They provide their quotes and public keys for future certificates to the Root CA and request certificates. +Distributed SubRoot Certification Authorities (*SubRoot CAs*) are located at the next hierarchical level. They provide their quotes and public keys to the Root CA and request certificates. -Root CA receives these incoming requests, verifies them, and issues and signs certificates for SubRoot CAs. The SubRoot CAs, in turn, issue and sign certificates for [orders](/fundamentals/orders). Confidential VMs that execute orders may be deployed inside TDX, SEV, or other CPU- or GPU-based TEE. +Root CA verifies the incoming requests and then issues and signs certificates for SubRoot CAs. The SubRoot CAs, in turn, issue and sign certificates for [orders](/fundamentals/orders). ## Order certificates -The certification system facilitates attestation verification for orders, as only the order certificate is required. The certificate chain up to the Root CA is verified automatically. +The issuing of order certificates involves [Trusted Loader](/whitepaper/tee-provider/#trusted-loader-mechanism)—a mechanism developed to load and run applications within a TEE. Trusted Loader operates inside a Confidential VM that executes the order. This VM is deployed within Intel TDX, AMD SEV-SNP, NVIDIA GPU TEE, or other TEEs. -The issuing of order certificates involves [Trusted Loader](/whitepaper/tee-provider/#trusted-loader-mechanism)—a mechanism developed to load and run applications within a TEE. Trusted Loader operates inside a Confidential VM that executes the order. +To receive an order certificate, the Trusted Loader sends a request to a SubRoot CA providing the quote and a public key. The SubRoot CA verifies the quote and issues the order certificate using the provided public key. -The process of getting an order certificate is the following: +### Workload Info -1. Trusted Loader provides its quote and a public key to a SubRoot CA and sends a request for an order certificate. -2. The SubRoot CA verifies the Trusted Loader’s quote and issues the order certificate with the provided public key. +All orders in Super Protocol contain necessary input data, including the hash of the executed application—the *solution hash*. This execution environment is referred to as *Workload Info*. -Any new order in Super Protocol contains necessary input data, including the solution hash or, in other words, the hash of the executed application. This execution environment is referred to as *Workload Info*. +The Workload Info includes an array called `runtimeInfo[]`, which contains each order component’s `Type`, `Hash`, and `Size`. It may also contain a signature key (`SignatureKey`), stored as a hash, and hashes of input arguments (`Args`). Each application, dataset, or other order component has a corresponding entry in this array. -The Workload Info includes an array called `runtimeInfo[]`, which contains each order component’s Type, Hash, and Size. It may also contain a signature key (SignatureKey), stored as a hash, and hashes of input arguments (Args hash). Each application, dataset, or other order component has a corresponding entry in this array. +The hash of the Workload Info is stored in the certificate generated for each order. The certificate’s public component, private key, Workload Info, and complete certificate chain are stored in the `sp/certs` directory, available to the order during execution. -The hash of the Workload Info is stored in the certificate generated for each order. The certificate’s public part, private key, Workload Info, and complete certificate chain are stored in the `sp/certs` directory available to the order during execution. - -Besides, the public part of the certificate and the `runtimeInfo[]` array are recorded on the blockchain, allowing anyone to validate the order and verify the certificate chain using the following [SPCTL](/cli) command: - -``` -./spctl orders get-report -``` - -Where: - -- `` is the ID of the order. \ No newline at end of file +Additionally, the public component of the certificate and the `runtimeInfo[]` array are recorded on the blockchain, allowing anyone to validate the order and verify the certificate chain. \ No newline at end of file diff --git a/docs/fundamentals/images/certification-system-architecture.png b/docs/fundamentals/images/certification-system-architecture.png index 788ef314..776287c5 100644 Binary files a/docs/fundamentals/images/certification-system-architecture.png and b/docs/fundamentals/images/certification-system-architecture.png differ diff --git a/docs/marketplace/guides/log-in.md b/docs/marketplace/guides/log-in.md index b512434b..2bc85341 100644 --- a/docs/marketplace/guides/log-in.md +++ b/docs/marketplace/guides/log-in.md @@ -91,7 +91,7 @@ To log in as a Web3 user, you need the MetaMask browser extension. MetaMask is o

-3. In the MetaMask window that appears, **Approve** adding a new network (opBNB) and then **Confirm** the signature request. +3. In the MetaMask window that appears, press **Connect**, then **Approve** adding a new network (opBNB Mainnet), and finally, **Confirm** the signature request.
diff --git a/docs/marketplace/images/all-orders.png b/docs/marketplace/images/all-orders.png index 72603ec4..0a52f9b6 100644 Binary files a/docs/marketplace/images/all-orders.png and b/docs/marketplace/images/all-orders.png differ diff --git a/docs/marketplace/images/enter-marketplace-button.png b/docs/marketplace/images/enter-marketplace-button.png index 73fd514a..ee94e153 100644 Binary files a/docs/marketplace/images/enter-marketplace-button.png and b/docs/marketplace/images/enter-marketplace-button.png differ diff --git a/docs/marketplace/images/marketplace-models-menu.png b/docs/marketplace/images/marketplace-models-menu.png index 0eabcfe9..681abebf 100644 Binary files a/docs/marketplace/images/marketplace-models-menu.png and b/docs/marketplace/images/marketplace-models-menu.png differ diff --git a/docs/marketplace/images/marketplace-order-builder.png b/docs/marketplace/images/marketplace-order-builder.png index 02c76d49..abf245d4 100644 Binary files a/docs/marketplace/images/marketplace-order-builder.png and b/docs/marketplace/images/marketplace-order-builder.png differ diff --git a/docs/marketplace/images/marketplace-web3acc-menu.png b/docs/marketplace/images/marketplace-web3acc-menu.png index f848c247..dc3b0068 100644 Binary files a/docs/marketplace/images/marketplace-web3acc-menu.png and b/docs/marketplace/images/marketplace-web3acc-menu.png differ diff --git a/docs/marketplace/images/marketplace-web3acc.png b/docs/marketplace/images/marketplace-web3acc.png index 15ef7f07..073739d0 100644 Binary files a/docs/marketplace/images/marketplace-web3acc.png and b/docs/marketplace/images/marketplace-web3acc.png differ diff --git a/docs/marketplace/images/metamask-add-opbnb.png b/docs/marketplace/images/metamask-add-opbnb.png index 0e5e397a..6e3c53a3 100644 Binary files a/docs/marketplace/images/metamask-add-opbnb.png and b/docs/marketplace/images/metamask-add-opbnb.png differ diff --git a/docs/marketplace/images/metamask-newacc-menu.png b/docs/marketplace/images/metamask-newacc-menu.png index 5bba519d..07a7cbaa 100644 Binary files a/docs/marketplace/images/metamask-newacc-menu.png and b/docs/marketplace/images/metamask-newacc-menu.png differ diff --git a/docs/marketplace/images/metamask-open.png b/docs/marketplace/images/metamask-open.png index 52dab99c..632f2946 100644 Binary files a/docs/marketplace/images/metamask-open.png and b/docs/marketplace/images/metamask-open.png differ diff --git a/docs/marketplace/images/metamask-transaction-manually.png b/docs/marketplace/images/metamask-transaction-manually.png index b506147e..85b363fd 100644 Binary files a/docs/marketplace/images/metamask-transaction-manually.png and b/docs/marketplace/images/metamask-transaction-manually.png differ diff --git a/docs/marketplace/images/models-table.png b/docs/marketplace/images/models-table.png index 999019dc..e945a67e 100644 Binary files a/docs/marketplace/images/models-table.png and b/docs/marketplace/images/models-table.png differ diff --git a/docs/marketplace/images/models-tiles.png b/docs/marketplace/images/models-tiles.png index 6290d571..d23475b5 100644 Binary files a/docs/marketplace/images/models-tiles.png and b/docs/marketplace/images/models-tiles.png differ diff --git a/docs/marketplace/images/my-files-menu.png b/docs/marketplace/images/my-files-menu.png index 0674c25e..7aa52880 100644 Binary files a/docs/marketplace/images/my-files-menu.png and b/docs/marketplace/images/my-files-menu.png differ diff --git a/docs/marketplace/images/my-files-upload.png b/docs/marketplace/images/my-files-upload.png index 0296ce03..74a9bf6c 100644 Binary files a/docs/marketplace/images/my-files-upload.png and b/docs/marketplace/images/my-files-upload.png differ diff --git a/docs/marketplace/images/my-files.png b/docs/marketplace/images/my-files.png index 31b0c2cc..ff8d6c12 100644 Binary files a/docs/marketplace/images/my-files.png and b/docs/marketplace/images/my-files.png differ diff --git a/docs/marketplace/images/order-builder-engine-settings.png b/docs/marketplace/images/order-builder-engine-settings.png index 69fc5c0d..ccd5aee3 100644 Binary files a/docs/marketplace/images/order-builder-engine-settings.png and b/docs/marketplace/images/order-builder-engine-settings.png differ diff --git a/docs/marketplace/images/order-builder.png b/docs/marketplace/images/order-builder.png index 52b7f38a..28aab2ee 100644 Binary files a/docs/marketplace/images/order-builder.png and b/docs/marketplace/images/order-builder.png differ diff --git a/docs/marketplace/limitations.md b/docs/marketplace/limitations.md index c372b37d..d9ab2fbf 100644 --- a/docs/marketplace/limitations.md +++ b/docs/marketplace/limitations.md @@ -21,20 +21,20 @@ Super Protocol constantly adds more TDX+H100 machines and will soon begin onboar Pricing and restrictions: - Order lease time: minimum 2 hours. -- Compute costs 0.326 SPPI tokens per hour in most cases. +- Compute costs 0.2126 SPPI tokens per hour in most cases. - Models from the Marketplace cost 0 SPPI per order. - Engines cost 0 SPPI per order. - Setting up a confidential tunnel costs 0.1 SPPI per order or less. For example, a two-hour GPU-order would cost: -0.326 x 2 + ~0.1 = **0.752 SPPI** tokens. +0.2126 x 2 + ~0.1 = **0.5252 SPPI** tokens. The total gas fee varies, but it is approximately **0.00001 BNB** per order. ## Token limits -All users can receive up to **5 SPPI** tokens daily. Web3 users can also get up to **0.0001 BNB** tokens daily. +Web3 users can receive up to **5 SPPI** tokens and **0.0001 BNB** tokens daily. ## Model limits