Technical Glossary

A reference for the security and infrastructure terminology used throughout the Lucid Platform.

Core Concepts

TEE (Trusted Execution Environment)

Hardware-based isolation that protects code and data from the host operating system and other processes. Also commonly referred to as an "Enclave."

Attestation

The process of cryptographically proving that a specific piece of software is running inside a legitimate, untampered TEE.

AI Passport

The end-product of a Lucid audit. A signed cryptographic bundle containing model inputs, outputs, auditor decisions, and hardware attestation evidence.

RATS (Remote ATtestation procedureS)

An IETF standard (RFC 9334) for remote attestation. Lucid's architecture (Attester, Verifier, Relying Party) is modeled after this framework.

Components

Attester (The Workload)

In the RATS architecture, this is the entity being verified. In Lucid, it is your AI workload running inside a TEE sidecar.

Verifier (The Judge)

The service that appraises the evidence produced by the Attester to ensure it meets the required security and logic policies.

Relying Party (The Consumer)

Any system or user that consumes the AI results and verifies the AI Passport to ensure it was produced by a trusted source.

CoCo (Confidential Containers)

A CNCF project focused on bringing TEE support to Kubernetes. Lucid integrates with CoCo to provide hardware roots of trust.

Modes

Mock Mode

A simulation mode for local development that uses standard ECDSA signatures instead of hardware-specific TEE quotes.

Production Mode

The real-world deployment mode where auditors and models run inside actual hardware TEEs (SGX, SEV, Nitro).