> Is it the attestation server that needs to run on a chip that support new encryption features or does the machine that runs podman with the container need that new chip features ? The attestation server does not need to run on a chip that supports TEE features. Verification can be done strictly from software. The machine that is actually running the podman workload with encryption is what needs TEE extensions. > Can this also be used in combination with for example TPM? It can, and development is underway for these two to be used and attested in-tandem.