Confidential Computing v1 API - Class ContainerImageSignature (1.2.0)

public sealed class ContainerImageSignature : IMessage<ContainerImageSignature>, IEquatable<ContainerImageSignature>, IDeepCloneable<ContainerImageSignature>, IBufferMessage, IMessage

Reference documentation and code samples for the Confidential Computing v1 API class ContainerImageSignature.

ContainerImageSignature holds necessary metadata to verify a container image signature.

Inheritance

object > ContainerImageSignature

Namespace

Google.Cloud.ConfidentialComputing.V1

Assembly

Google.Cloud.ConfidentialComputing.V1.dll

Constructors

ContainerImageSignature()

public ContainerImageSignature()

ContainerImageSignature(ContainerImageSignature)

public ContainerImageSignature(ContainerImageSignature other)
Parameter
NameDescription
otherContainerImageSignature

Properties

Payload

public ByteString Payload { get; set; }

Optional. The binary signature payload following the SimpleSigning format https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md#simple-signing. This payload includes the container image digest.

Property Value
TypeDescription
ByteString

PublicKey

public ByteString PublicKey { get; set; }

Optional. Reserved for future use.

Property Value
TypeDescription
ByteString

SigAlg

public SigningAlgorithm SigAlg { get; set; }

Optional. Reserved for future use.

Property Value
TypeDescription
SigningAlgorithm

Signature

public ByteString Signature { get; set; }

Optional. A signature over the payload. The container image digest is incorporated into the signature as follows:

  1. Generate a SimpleSigning format payload that includes the container image digest.
  2. Generate a signature over SHA256 digest of the payload. The signature generation process can be represented as follows: Sign(sha256(SimpleSigningPayload(sha256(Image Manifest))))
Property Value
TypeDescription
ByteString