public sealed class ContainerImageSignature : IMessage<ContainerImageSignature>, IEquatable<ContainerImageSignature>, IDeepCloneable<ContainerImageSignature>, IBufferMessage, IMessage
Reference documentation and code samples for the Confidential Computing v1 API class ContainerImageSignature.
ContainerImageSignature holds necessary metadata to verify a container image
signature.
Optional. A signature over the payload.
The container image digest is incorporated into the signature as follows:
Generate a SimpleSigning format payload that includes the container
image digest.
Generate a signature over SHA256 digest of the payload.
The signature generation process can be represented as follows:
Sign(sha256(SimpleSigningPayload(sha256(Image Manifest))))
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThe \u003ccode\u003eContainerImageSignature\u003c/code\u003e class in the Google Cloud Confidential Computing v1 API provides metadata for verifying container image signatures.\u003c/p\u003e\n"],["\u003cp\u003eVersion 1.8.0 is the latest available version of the Confidential Computing API, and the page details the 1.6.0 version.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eContainerImageSignature\u003c/code\u003e class inherits from \u003ccode\u003eobject\u003c/code\u003e and implements \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, \u003ccode\u003eIDeepCloneable\u003c/code\u003e, and \u003ccode\u003eIBufferMessage\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eKey properties of \u003ccode\u003eContainerImageSignature\u003c/code\u003e include \u003ccode\u003ePayload\u003c/code\u003e, \u003ccode\u003ePublicKey\u003c/code\u003e, \u003ccode\u003eSigAlg\u003c/code\u003e, and \u003ccode\u003eSignature\u003c/code\u003e, which are used for signature verification and are of the \u003ccode\u003eByteString\u003c/code\u003e type, with \u003ccode\u003eSigAlg\u003c/code\u003e using the \u003ccode\u003eSigningAlgorithm\u003c/code\u003e enum.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eContainerImageSignature\u003c/code\u003e holds metadata to verify the signature, which is created using a payload that includes the container image digest and uses the SimpleSigning format, then signed over the SHA256 digest of the payload.\u003c/p\u003e\n"]]],[],null,[]]
