Back to Glossary
VEX

TEE Isolation

trusted execution environmentconfidential computinghardware enclave

TEE isolation is the confinement of an AI agent's runtime within a hardware-enforced secure enclave (Intel TDX, AMD SEV-SNP).

HOST-LEVEL THREAT MODEL

Cloud provider or a compromised hypervisor may attempt to extract agent context window or key material. TEE isolation provides confidentiality that the host system cannot violate, defending against memory extraction.

PROTOCOL CONTEXT (ARCHITECTURE.TSX / ATTEST-RS)

ProvnAI's architecture provisions agent runtime within TEE infrastructure. The attest-rs library generates attestation reports — signed measurements of the enclave's state — embedded in the Evidence Capsule.

ProvnAI Mitigation

ProvnAI deployments support TEE provisioning. Private key material for identity signing never leaves the TEE boundary. Attestation reports are refreshed per-session and verified by the VEX authority service.