This template creates a Attestation Provider.
Enclaves allow software to execute in a manner that excludes all (or large portions) of the host and VM OS from the TCB. Keys can be released to enclaves by relying parties (such as Azure Key Vault), as long as these relying parties can be convinced that the recipient is in fact an enclave matching the key release policy. Multiple technologies provide enclave functionality. SGX is hardware-level isolation supported on Intel CPUs. The processor itself ensures memory accesses to sensitive regions of memory are constrained to an enclave’s execution context. VSM is a Microsoft software solution in which the hypervisor is responsible for protecting enclave memory.
Microsoft.Attestation/attestationProvider is the resource that users should create if they want to manage the attestation requirements
SGX Attestation
VSM Attestation